Updating Incident Records

In this article, you will find:

  • Navigation guidance for accessing the Incident Management area.

  • The process of updating an incidents

Accessing Incident Management

You can access this area by selecting the Incident Management button from within Compliance > ISMS, as shown below:

Incident Management navigation guidance

Updating an Incident

All incidents that occur within a business must be recorded accurately for compliance and improvement purposes. These incidents can be updated by selecting Review on the desired incident, as shown below:

Reviewing an Incident

After selecting Review, a new window will open, displaying more information about an incident. The following page will appear:

Example Incident window

Information regarding an incident can be changed by selecting Update.

This will open pop-up window, allowing you to modify the information for the selected incident, as shown below:

Updating an Incident

The incident is categorised into different groups, as shown above:

  • Severity: A category to show the impact the incident had on business operations. The categories are: Low, Medium, High, and Critical.

  • Resolution Status: Indicates whether the task details have been approved.

  • Response Plan: A record of the steps to respond to the incident. For example, a phishing attempt can be responded to by quarantining the targeted inbox, blacklisting the sender, and updating associated playbooks.

  • Risk Register: Any risks within the risk register that should be linked to this incident.

  • Files: Any files associated with this incident can also be uploaded, such as a transcript of the event, a screenshot of a phishing email, or any other record that are relevant to the incident, or may help with future threats.

Once you have finished changing the incident details, click Update.