home

ACST Policies & Guidelines

HelpDrawerRealmRealm AccountingMinistryPlatformGivingTest Giving_VersionsPDSACSConnectShepherdGrowth MethodHeadMasterRefresh WebsitesTrust CenterGo MethodMissionInsiteACST Content StandardsACST Policies & Guidelines
HelpDrawerRealmRealm AccountingMinistryPlatformGivingTest Giving_VersionsPDSACSConnectShepherdGrowth MethodHeadMasterRefresh WebsitesTrust CenterGo MethodMissionInsiteACST Content StandardsACST Policies & Guidelines

What would you like to know more about?

Show Contents

thumbnailACST Policies & Guidelines

Incident Reporting Policy

Know When to Report a Security Incident

A security incident is any unauthorized access, disclosure, modification to your work computer, or destruction of information. If you believe your computer may be infected or compromised, let us know!

Activities to Report to Risk Management

  • Has your computer been stolen or possibly lost? We need to know about it!

  • Have you clicked on any links in an email you weren’t expecting or one that doesn’t seem right? You may have fallen victim to a phishing email and unknowingly downloaded malware onto your computer.

  • Is your computer exhibiting any unusual system behavior (e.g. unscheduled system reboot, unexpected pop-up messages, abnormal errors)? This could be a result of malware or a number of other hacker tactics.

  • Do you have difficulty accessing the Internet or get a strange message when trying to access a website? Outside of spotty network connectivity, we want to make sure your network interruption isn’t a result of a denial of service attack, a malicious domain takeover, or other hacker tactics.

  • Have you heard or read about a data breach or security incident relating to an ACST vendor partner or customer recently? Please let us know if you hear news about our vendor partners and customers. It may affect ACST, and we need to know how to support them and protect ourselves

What to do first:

✔ Do not turn off or restart your device - we want to see what you’re seeing, if possible.

✔ Disable the WIFI connection, and if you have a network cable, disconnect it from the back of the computer.

✔ Do not use the device, but leave all computer programs running as they were.

Then, report the security incident:

  1. During normal business hours, email risk@acst.com. After hours and on weekends, please call Risk Management team members listed below. Their Vonage phone numbers are listed to ensure they can be reached at any time.
    John WebsterIncident Manager843-413-8245
    Christian BelkIncident Handler - Forensics843-229-3613
    Daniel PalmerIncident Handler - Investigations843-413-8020
    Francis YeboahIncident Analyst / Insurance Liaison843-413-8433
  2. With the exception of your immediate supervisor, do not communicate with anyone outside of Risk Management about any details surrounding the reported incident. Only members of the C-Suite Leadership Team are authorized to speak on behalf of ACST with law enforcement or to address the public. Document any information you know while waiting for Risk Management to respond to the incident. If known, include the date, time, and the nature of the incident. Any information you can provide will help!
  3. Document any information you know while waiting for Risk Management to respond to the incident. If known, include the date, time, and the nature of the incident. Any information you can provide will help!
    Note: PRINT THIS OUT AND KEEP IT NEAR YOUR DESK IN CASE OF A COMPUTER EMERGENCY.

Last updated: May 28, 2025