Please enable JavaScript.
Coggle requires JavaScript to display documents.
Incident Response Planning - Coggle Diagram
Incident Response Planning
1- Preparation
1-3- Establish communication channels and tools
1-4- Establish procedures for reporting and documenting incidents
1-2- Define roles and responsibilities
1-5- Regularly train and test the IRP
1-1- Develop and maintain an IRP
2- Identification
2-3- Regularly review system logs for anomalies
2-2- Receive alerts from users or third-party systems
2-1- Implement intrusion detection systems and monitoring tools
3- Containment
3-3- Collect evidence to support the investigation
3-2- Shut down affected systems or networks
3-1- Isolate affected systems and networks
5- Migtigation
5-3- Monitor systems for any residual effects of the incident
5-2- Restore systems and data
5-1- Develop and implement a plan to mitigate the impact of the incident
6- Resolution
Recovery
Communication
Legal
Finance
Public Relations
Post-Incident Reviwe
Root Couse Analysis
Fraud Investigation
Compliance Repoting
Customer Support
Payment System Recovery
Business Continuity
Cyber Security Response
Vendor Managment
Reputation Managment
Eradication
Learn
4- Investigation
4-2- Identify affected systems and data
4-1- Analyze the scope and nature of the incident
4-3- Collect and preserve evidence
4-4- Document the findings