Incident Response Plan Block
Document incident response plans with detection, triage, resolution steps, and communication procedures.
Overview
The Incident Response Plan block documents response procedures for different incident types. It captures detection methods, triage steps, resolution steps, communication plans, and post-incident activities. Use this block to maintain consistent and effective incident response.
Security Incident
An incident response plan for security breaches.
Service Outage
An incident response plan for service availability issues.
Block Properties
| Property | Required | Description |
|---|---|---|
| incidentType | Yes | Type of incident this plan covers |
| severity | No | Severity level (critical/P1, high/P2, medium/P3, low/P4) |
| detection | No | How this incident type is detected |
| triageSteps | No | Array of initial triage steps |
| resolutionSteps | No | Array of resolution steps |
| communicationPlan | No | Communication procedures and timelines |
| postIncident | No | Post-incident activities |
| owner | No | Team responsible for this incident type |