What Does Incident Response Plan Mean?
An incident response plan is a document that specifies how an organization will limit the risk of negative consequences should an incident occur that violates an organization's policies for acceptable use.
Incidents are often categorized by the type of risk they pose to continued operations. A cybersecurity incident response plan, for example, provides step-by-step instructions for what employees should do in response to the following types of events:
- Loss or theft of a physical digital asset
- Security breaches
- Malicious software (malware) infections
The purpose of an incident response plan is to clearly document responsibilities and linear workflows so everyone is on the same page should an event occur.