search menu icon-carat-right cmu-wordmark

Incident Management Resources

These resources cover many aspects of incident management in CSIRTs, NatCSIRTs, and beyond.

Publisher:

CERT Division

Abstract

Incident management involves recognizing, analyzing, and responding to incidents (e.g., an adverse event that affects the security of computer systems or networks, violation of a security policy) to limit the damage and lower the cost of recovery. When computer security incidents occur, organizations must respond quickly and effectively.

The following publications provide a collection of information about incident management that is broad and detailed:

Collection Contents