Difference between revisions of "Incident Management"

From CIPedia
Jump to navigation Jump to search
(EU project CascEff)
(Notes)
 
(10 intermediate revisions by the same user not shown)
Line 14: Line 14:
 
<br />
 
<br />
 
====[[Cuba]]====
 
====[[Cuba]]====
{{definition|Gestión de Incidentes: Plan de acción para atender y resolver las incidencias ocurridas. Incorpora medidas de desempeño que permitan conocer la calidad del sistema de protección y detectar tendencias antes de que se conviertan en grandes problemas. <ref>[http://www.cscuba.cu/es/glosario-de-terminos/G Glossary of Cyber terms/Glosario de términos, Centro de Seguridad del Ciberespacio]</ref>}}<br/><br/>
+
{{definition|Gestión de Incidentes: Plan de acción para atender y resolver las incidencias ocurridas. Incorpora medidas de desempeño que permitan conocer la calidad del sistema de protección y detectar tendencias antes de que se conviertan en grandes problemas. <ref>[http://www.cscuba.cu/es/glosario-de-terminos/G Glossary of Cyber terms/Glosario de términos, Centro de Seguridad del Ciberespacio]</ref>}}<br/>
 +
====[[Eswatini]]====
 +
{{definition|Incident management: Management and coordination of activities to examine and rectify a current or potential occurrence of an adverse cyber incident that may compromise a system or network. <ref>[https://ncsirt.org.sz/wp-content/uploads/2021/06/Eswatini-NCS-2020.pdf ESWATINI NATIONAL CYBERSECURITY STRATEGY 2020 - 2025 (2020)]</ref>}}<br/>
  
 +
==== [[Liberia]] ====
 +
{{definition|Incident management: Executing a defensive response when a network's security is threatened. <ref>[http://www.lta.gov.lr/doc/ICT%20_%20Telecom%20Policy%20Main%20Body.pdf  Government of Liberia’s Policy for the Telecommunications and Information Communications Technology (ICT) sectors]</ref>}}<br /><br />
 
==== [[Netherlands]] ====
 
==== [[Netherlands]] ====
 
{{definition|Incident Management is  het geheel van organisatorische maatregelen dat ervoor moet zorgen dat een incident adequaat gedetecteerd, gemeld en behandeld wordt om daarmee de kans op uitval van bedrijfsvoering processen of schade ontstaan als gevolg van het incident te minimaliseren, dan wel te voorkomen.<ref>[https://www.ibdgemeenten.nl/wp-content/uploads/2014/04/13-1111-voorbeeld-incident-management-en-response-beleid.pdf Voorbeeld Incident Management en responsebeleid, Kwaliteitsinstituut Nederlandse Gemeenten (2013)]</ref>}}
 
{{definition|Incident Management is  het geheel van organisatorische maatregelen dat ervoor moet zorgen dat een incident adequaat gedetecteerd, gemeld en behandeld wordt om daarmee de kans op uitval van bedrijfsvoering processen of schade ontstaan als gevolg van het incident te minimaliseren, dan wel te voorkomen.<ref>[https://www.ibdgemeenten.nl/wp-content/uploads/2014/04/13-1111-voorbeeld-incident-management-en-response-beleid.pdf Voorbeeld Incident Management en responsebeleid, Kwaliteitsinstituut Nederlandse Gemeenten (2013)]</ref>}}
 
The total set of organisational measures that cause the adequate detection, reporting and management of an [[incident]] to reduce the chance of disturbed business processes or to mimimise or avoid [[damage]] due to the [[incident]]. <br />
 
The total set of organisational measures that cause the adequate detection, reporting and management of an [[incident]] to reduce the chance of disturbed business processes or to mimimise or avoid [[damage]] due to the [[incident]]. <br />
 +
==== [[Poland]] ====
 +
{{definition|Zarządzanie incydentem – obsługę incydentu, wyszukiwanie powiązań między [[Incident|incydentami]], usuwanie przyczyn ich wystąpienia oraz opracowanie wniosków z obsługi [[Incident|incydentu]]. <ref name=Poland>[http://bip.kprm.gov.pl/download/75/30991/RM-10-64-18.pdf  U S TAWA z dnia o krajowym systemie cyberbezpieczeństwa / Polish (draft) law on the national cybersecurity system (2018)]</ref>}}<br />
  
 
==== [[Switzerland]]====
 
==== [[Switzerland]]====
Line 27: Line 33:
  
 
==== [[United States]] ====
 
==== [[United States]] ====
 +
=====[[DHS]]=====
 +
{{definition|Incident Management is the management and coordination of activities associated with an actual or potential occurrence of an [[event]] that may result in adverse [[consequence]]s to information or information systems. <ref name=nicss>[https://niccs.us-cert.gov/glossary DHS/NICSS Glossary]</ref>}}<br/>
 
=====FEMA=====
 
=====FEMA=====
 
{{definition|Incident Management is the broad spectrum of activities and organizations providing effective and efficient operations, coordination, and support applied at all levels of government, utilizing both governmental and nongovernmental resources to plan for, respond to, and recover from an [[Incident|incident]], regardless of cause, size, or complexity. <ref name="NIMS">[https://www.fema.gov/pdf/emergency/nims/NIMS_core.pdf National Incident Management System - Core, DHS, Washington (2008)]</ref>}}<br />
 
{{definition|Incident Management is the broad spectrum of activities and organizations providing effective and efficient operations, coordination, and support applied at all levels of government, utilizing both governmental and nongovernmental resources to plan for, respond to, and recover from an [[Incident|incident]], regardless of cause, size, or complexity. <ref name="NIMS">[https://www.fema.gov/pdf/emergency/nims/NIMS_core.pdf National Incident Management System - Core, DHS, Washington (2008)]</ref>}}<br />
Line 34: Line 42:
 
===== DoT=====
 
===== DoT=====
 
{{definition|[for comparison purposes]<br/>''Traffic'' incident management is the systematic, planned, and coordinated use of human, institutional, mechanical, and technical resources to reduce the duration and impact of ''traffic'' incidents, and improve the safety of ''motorists, crash victims, and traffic'' incident responders. <ref>[https://ops.fhwa.dot.gov/freewaymgmt/publications/frwy_mgmt_handbook/chapter10.htm DoT Freeway management Guide]</ref>}}<br/>
 
{{definition|[for comparison purposes]<br/>''Traffic'' incident management is the systematic, planned, and coordinated use of human, institutional, mechanical, and technical resources to reduce the duration and impact of ''traffic'' incidents, and improve the safety of ''motorists, crash victims, and traffic'' incident responders. <ref>[https://ops.fhwa.dot.gov/freewaymgmt/publications/frwy_mgmt_handbook/chapter10.htm DoT Freeway management Guide]</ref>}}<br/>
 +
=====[[US-CERT]]=====
 +
{{definition|The purpose of incident management is to establish processes to identify and analyze IT [[Event|events]], detect cybersecurity [[Incident|incidents]], and determine an organizational response.  <ref name="USCERT">[https://www.us-cert.gov/sites/default/files/c3vp/csc-crr-method-description-and-user-guide.pdf Cyber Resilience Review (CRR): Method Description and Self-Assessment User Guide (2016)]</ref>}}<br /><br/>
  
 
==== [[Uruguay]]====
 
==== [[Uruguay]]====
Line 47: Line 57:
  
 
==Notes==
 
==Notes==
 +
 +
==References==
 
<references />
 
<references />
  
<!--
 
==References==
 
* Test reference. -->
 
  
 
[[Category:Event]]
 
[[Category:Event]]
{{#set:defined by=Australia|defined by=Canada|defined by=Cuba|defined by=Netherlands|defined by=Switzerland|defined by=United Kingdom|defined by=United States|defined by=Uruguay|defined by=EU project|defined by=CascEff|defined by=EU}}
+
{{#set:defined by=Australia|defined by=Canada|defined by=Cuba|defined by=Eswatini|defined by=Liberia|defined by=Netherlands|defined by=Poland|defined by=Switzerland|defined by=United Kingdom|defined by=United States|defined by=Uruguay|defined by=EU project|defined by=DHS|defined by=DoD|defined by=CascEff|defined by=EU|defined by=US-CERT}}
 +
{{#set: Showmainpage=Yes}}

Latest revision as of 12:05, 15 August 2022

Definitions

European Definitions

EU project CascEff

Incident management is an ongoing process to prevent, mitigate, prepare for, respond to, and recover from an incident that threatens life, property, operations, or the environment. [1]


Other International Definitions

National Definitions

Australia

Incident Management is the process of controlling the incident and coordinating resources. [2]


Canada

The coordination of an organization’s activities aimed at preventing, mitigating against, preparing for, responding to and recovering from an incident.

Coordination des activités de prévention, d’atténuation, de préparation, d’intervention et de rétablissement d’une organization relatives à un incident. [3]


Cuba

Gestión de Incidentes: Plan de acción para atender y resolver las incidencias ocurridas. Incorpora medidas de desempeño que permitan conocer la calidad del sistema de protección y detectar tendencias antes de que se conviertan en grandes problemas. [4]


Eswatini

Incident management: Management and coordination of activities to examine and rectify a current or potential occurrence of an adverse cyber incident that may compromise a system or network. [5]


Liberia

Incident management: Executing a defensive response when a network's security is threatened. [6]



Netherlands

Incident Management is het geheel van organisatorische maatregelen dat ervoor moet zorgen dat een incident adequaat gedetecteerd, gemeld en behandeld wordt om daarmee de kans op uitval van bedrijfsvoering processen of schade ontstaan als gevolg van het incident te minimaliseren, dan wel te voorkomen.[7]

The total set of organisational measures that cause the adequate detection, reporting and management of an incident to reduce the chance of disturbed business processes or to mimimise or avoid damage due to the incident.

Poland

Zarządzanie incydentem – obsługę incydentu, wyszukiwanie powiązań między incydentami, usuwanie przyczyn ich wystąpienia oraz opracowanie wniosków z obsługi incydentu. [8]


Switzerland

Ereignismanagement bezeichnet die systematische Vorsorge für Ereignisse sowie deren Bewältigung. [9]

Par « gestion de l’événement », on entend la préparation systématique aux événements ainsi que la maîtrise de ceux-ci. [10]

Per gestione dell’evento s’intende la preparazione sistematica agli eventi e il loro fronteggiamento. [11]


United Kingdom (UK)

Incident management is the management and coordination of activities to investigate, and remediate, an actual or potential occurrence of an adverse cyber event that may compromise or cause harm to a system or network. [12]


United States

DHS
Incident Management is the management and coordination of activities associated with an actual or potential occurrence of an event that may result in adverse consequences to information or information systems. [13]


FEMA
Incident Management is the broad spectrum of activities and organizations providing effective and efficient operations, coordination, and support applied at all levels of government, utilizing both governmental and nongovernmental resources to plan for, respond to, and recover from an incident, regardless of cause, size, or complexity. [14]


DoD
Incident management is a national comprehensive approach to preventing, preparing for, responding to, and recovering from terrorist attacks, major disasters, and other emergencies (source: JP 3-28). [15]


DoT
[for comparison purposes]
Traffic incident management is the systematic, planned, and coordinated use of human, institutional, mechanical, and technical resources to reduce the duration and impact of traffic incidents, and improve the safety of motorists, crash victims, and traffic incident responders. [16]


US-CERT
The purpose of incident management is to establish processes to identify and analyze IT events, detect cybersecurity incidents, and determine an organizational response. [17]



Uruguay

Gestión de incidents: Es el conjunto de acciones y procesos tendientes a brindar a las organizaciones de la Comunidad Objetivo fortalezas y capacidades para responder en forma adecuada a la ocurrencia de incidentes de seguridad informática que afecten real o potencialmente sus servicios. [18]



Standard Definition

See also

Notes

References