Citation[]
U.S. Department of Justice, Incident Response Procedures for Data Breaches (DOJ Instruction 0900.00.01) (Aug. 6, 2013) (full-text).
Overview[]
This instruction establishes Department of Justice (DOJ) notification procedures and plans for responding to actual or suspected data breaches involving personally identifiable information (PII), company or business identifiable information, significant breaches of National Security Information (NSI) and significant cybersecurity incidents. It also identifies the DOJ Core Management Team (CMT) as the primary advisor to the Attorney General in making determinations regarding breach notification and as the review and oversight body for significant breaches of national security information and significant cybersecurity incidents.