In practice do you consider a unplanned/unexpected server reboot a security incident?

I know that in theory it does (security incident = unexpected event) but I want to know what does everyone PRACTICE?

Further, what's the first step in your response process (security incident or not)? Contact the system administrator or the security office? If security office is not available is the system administrator allowed to act without security?

I'm looking into the possibility of implementing this in my company and am looking for information regarding how others handle this 'event'.

Thanks