Incident Response is art for handling & responding over accidentally occurred security incident (threats & breaches) whether it’s related to connected devices or violation of your digital privacy, a well-planned incident response allows one to identify, minimize & most probably patch the occurred incident to reduce the risk involved in the loss of monetary or identity.
During the incident, the security team might face many bunches of unknown issues, where it becomes important to follow proper written documented procedures to limit the effect of damage occurred. Working in a world where your day to day data, identity & rights are compromised in every step. A security incident can only be effective when the response team is well effective and planned.
The first priority is to plan a comprehensive layout of the incident to analyze before any other significant security incident occurs. This can be classified broadly in below phases: