← Glossary · Cyber
Incident Response
The structured process for detecting, containing, and recovering from a security incident.
NIST SP 800-61 defines the canonical IR lifecycle: Preparation, Detection & Analysis, Containment/Eradication/Recovery, Post-Incident Activity.
Only a minority of SMBs have a written, tested IR plan. The gap between having one and not having one is measured in days of downtime and dollars of impact.
Related terms
See how Scarlet Risk covers Incident Response.
One platform for compliance, cyber, crypto, and world-watch risk.
Schedule Live Demo