Security Incidents - Type of Incident or Independent Management?
04 Jul 2019
Hello friends! I'd like to know if you treat the Security Incidents in a separate Module of Incident Management. In my scenario we have a single module, where security incidents are a "type" of incident with appropriate, operational and resolution categorizations. We also close Security Incident whit a workaround and open up a problem to do root cause analisys and improvement actions. Do you agree with these practices? Tks
We do the same except we tag security incidents as Major Incidents. This raises the priority level and increases visibility until final resolution.