incident-response
Post-Incident Review
A structured analysis conducted after a security incident to identify root causes, evaluate response effectiveness, document lessons learned, and implement improvements to prevent recurrence. Also known as a post-mortem or after-action review.
Related Terms
Incident Response Plan
incident-responseA documented set of procedures for detecting, responding to, and recovering from security incidents. An effective plan i...
Security Operations Center (SOC)
incident-responseA centralized unit that monitors, detects, investigates, and responds to cybersecurity incidents around the clock. SOC t...
Tabletop Exercise
incident-responseA discussion-based exercise where key personnel walk through a simulated security incident scenario without actually act...