Manually Create a Security Event

Manually create a Security Event to track and manage security-specific events.

To manually create a Security Event:

1. CSM Desktop Client or Browser Client toolbar, select New > New Event > New Event - Security.
2. Provide a name (optional) and details of the event (example: Laptop stolen; Laptop stolen from rental car).
3. Select an event type (example: Loss or Theft of Equipment).
   The type displays on the top of the form.
4. Select a priority and event severity.
5. Select a reported date time and who reported the event (optional).
6. Select a source and external source ID (optional).
7. The Assigned Team field is auto populated.
8. Assign an owner (Assigned To field).
   When an owner is selected, the Security Event automatically enters the In Progress phase.
9. A Runbook will be populated if there is one associated to the selected type.
10. Enter a Config Item if it is not automatically populated from an integration source.
    If there is an active Risk Assessment associated with the Config Item, the Mitigated CI Risk field will also be populated.
11. Enter a supporting service, if known. The Mitigated Service Risk field will be populated if there is an active Risk Assessment for the supporting service.
12. (Optional) Add notes to the Event Response Notes field.
    These fields are audited; Journal entries track modifications.
13. (Optional) Select a cause code and add resolution details.
14. (Optional) Initiate other Actions using the appropriate links in the Actions list, in response to a new Security Event.