1. Staff Protection Assessment and Plan- Conduct an assessment of staff protection measures currently in place at the NYC Health Department. Based on the assessment findings, develop detailed recommendations for enhancements to mitigate online and in person safety risks and proactively protect Health Department staff. 2. Incident Response Protocol- Develop an incident response protocol with procedures for promptly investigating reports and a framework for handling doxxing attacks that focuses on incident containment, eradication, recovery, and post-incident review. 3. Reporting Protocols for Staff Experiencing Safety Issues- Develop written protocols for Health Department employees to document and report online or in person harassment, threats, or intimidation. 4. Digital Protection Guidelines and Training- Develop cyber security awareness training and written guidance materials with digital safety recommendations and best practices to ensure all staff understand how to protect their personal information online. Topics to be covered should include: a. Conducting a digital footprint audit b. Technical Safeguards c. Social Media Guidelines; Training Delivery Requirements • Live, virtual format • Training must be tailored for the following audiences: (1) leadership and (2) other public-facing staff • All training content should be accessible, easy to understand, and relevant to staff in the public health field. 5. Guidelines and Training for In Person Protection- Develop personal safety training and written guidance materials for staff to protect themselves while performing their duties in the field. Topics to be covered should include de-escalation training to help staff safely and confidently navigate tense or confrontational situations. Training Delivery Requirements • Live, virtual format • Training must be tailored for the following audiences: (1) leadership and (2) other public-facing staff • All training content should be accessible, easy to understand, and relevant to staff in the public health field.
