Incident Handling Procedure

When an incident hits, this is your playbook. Triage, investigate, escalate if needed, resolve, and document. Every time. Panic helps nobody - this process does.

8 steps 3 automations
Security/Investigations Information Technology
Import this template free

Process steps

1

Initial triage

1 day from previous step
task
Form fields in this step
Triage started at *
Initial severity assessment *
What is affected? *
2

Investigation initiation

1 day from previous step
task
Form fields in this step
Lead investigator *
Investigation team
Primary focus areas *
3

Evidence collection

1 day from previous step
task
Form fields in this step
Evidence collected *
Where is evidence stored? *
Chain of custody documented? *
4

Impact assessment

1 day from previous step
task
Form fields in this step
Data impact (if any) *
System impact *
Customer impact *
Estimated financial impact
5

Escalation determination

1 day from previous step
task
Form fields in this step
Escalation decision *
Why this escalation level? *
Escalated to (names)
6

Resolution

1 day from previous step
task
Form fields in this step
Containment actions taken *
Remediation steps *
Resolution completed at *
7

Stakeholder communication

1 day from previous step
task
Form fields in this step
Internal communications sent *
External communications sent
Regulatory notification needed? *
8

Closure documentation

1 day from previous step
task
Form fields in this step
Final incident report location *
Lessons learned *
Recommendations for prevention *
Incident closed on *

Related templates

Ready to use this template?

Sign up free and start running this process in minutes.

Get started free
Discover Tallyfy
Follow