Classify the severity of the incident

Provide a detailed description of the incident

Identify the specific systems targeted

Assign a descriptive title along with the date and time it occurred

By the impact of the incident

By the specific systems, networks, or data targeted

By the cost of the incident

By the type of attacker

The techniques used by the attacker

The financial cost of the incident

The severity based on its impact on operations, data, and security

The type of attacker

Future management strategies

Responses needed to mitigate the incident

How it was discovered and its initial impact

The cost of the incident

Based on available evidence and analysis

By the responses needed

By the impact of the incident

By the cost of the incident

The future management strategies

The capability of the attacker(s)

The primary objective or motive behind the incident

The financial losses incurred

The capability of the attacker(s)

The impact of the incident

The type of attacker(s)

The techniques used by the attacker(s)