Professional Documents
Culture Documents
Event Identified
- User Report
Source
- System Monitoring
IT Standard Incident process Event closed
- Security team alert
Red Flag
No
NOC / SVC DESK
30 mins
Activation of Initial Event Alert
Incoming TRIAGE Critical Elapse since
Yes Yes Major Event Posted / Distributed
Event Report Questions Event First red flag
Process
Event Manager
Comms Plan
Update of Initial
Event Manager SWAT Initiate d IT Leadership Event
Major Event Event Alert Regular Updates
Process
Acknowledges Event Response
- Senior Mgt
IT Staff Management Closure
hand-off Team Actions SWAT Team Coo rd ination
- IT Staff
Bus. Stakeh older
IT I/O Team
I/O Actions
RCA
and
Validation of Problem Mgt
Testing of
IT EAD Team
issue
Event Impact remediation
Deployment of remediation Assignment of
and plan
EAD Actions remediation Problem ownership
Remediation
actions Confirmation
Investigation Sign-off on
of service Setting of follow up
action steps
restoration date
3rd Party
Vendor
Vendor Actions