Incident Reponse

22nd December 2019 | Cybrary Incident Reponse
Image Source

Incident Response is the activities that address the short-term, direct effects of an incident and may also support short-term recovery. Incident Response in cybersecurity work is where a team responds to a crisis or urgent situations within their entity to mitigate immediate and potential threats to business operations. Incident Response plans should include various phases of prescribed activities including Incident (1) Identification, (2) Containment, (3) Eradication, (4) Recovery, and (5) Revision.

Incident response plans should be written and tested. They must place the protection of human lives above any other activity. For example: If an Ambulance Dispatch system is compromised by hackers but otherwise performing its functional duties, the first law of Incident Response – protection of human life – means you cannot necessarily move to Containment and Eradication phases until a suitable replacement service is stood up to prevent a potential loss of life.

Synonym: Identification, Containment, Eradication, Recovery, Revision

Related Term: Recovery

Source: Workforce Framework

If you would like more information on this topic, watch this short video:

Latest Blogs

Stay sharp with the latest security insights

Discover and share the latest cybersecurity trends, tips and best practices – alongside new threats to watch out for.

Your WiFi Might Be Watching You… Sort Of

Your WiFi Might Be Watching You… Sort Of

As smart homes get smarter, so do their habits of watching, sensing, and reporting. Enter WiFi Motion Detection, a...

Read more
184 Million Passwords Leaked: Is Your Digital Doppelgänger Out There?

184 Million Passwords Leaked: Is Your Digital Doppelgänger Out There?

Spoiler alert: If you’re still using “password123” or “iloveyou” for your login… it’s time for an...

Read more
CyberHoot Newsletter – June 2025

CyberHoot Newsletter – June 2025

CyberHoot June Newsletter: Stay Informed, Stay Secure Welcome to the June edition of CyberHoot’s newsletter,...

Read more