The Security Incident Response Policy, from TechRepublic Premium, describes the organization’s process for minimizing and mitigating the results of an information technology security-related incident.

From the policy:

Whenever a user of an organization-provided computer, device, system, network application, cloud service or platform experiences a suspected technology-related security incident, the individual must immediately notify the IT department director of the event. The following, while not an exclusive list, are examples of suspected technology-related security incidents that should be reported to the IT director:

• Receiving strange unprompted messages, error windows or pop-up alerts.
• Abnormally slow performance, unusual system errors, strange dialog boxes recommending antivirus or antispyware registration, etc.
• Clicking on an unfamiliar link or “phishing message” — a message that appears legitimate but is later determined to be fraudulent — received within an email.
• Entering login credentials on any site later suspected to be a different entity, an imposter, unauthorized site or a potentially compromised page.