Incident Report (Internal)
Template: Internal Security Incident Report
Incident Identification
| Field | Value |
|---|---|
| Incident ID | [INC-YYYY-NNN] |
| Severity | [SEV-1 / SEV-2 / SEV-3 / SEV-4] |
| Status | [Open / In Progress / Resolved / Closed] |
| Created | [YYYY-MM-DD HH:MM] |
| Created by | [Name] |
| Assigned to | [Name] |
| GitHub Issue | [Link] |
Summary
[1-3 sentence summary of the incident]
Timeline
| Date/Time | Event | Responsible |
|---|---|---|
| Incident detected | ||
| Triage completed | ||
| Containment implemented | ||
| Patch developed | ||
| Patch deployed | ||
| Incident closed |
Affected Systems/Products
| System/Product | Version | Impact |
|---|---|---|
Root Cause
[Description of the root cause]
Actions Taken
| Action | Status | Date |
|---|---|---|
ENISA Reporting Obligation
- [ ] Subject to ENISA reporting
- [ ] Early Warning (24h) sent on: ___
- [ ] Notification (72h) sent on: ___
- [ ] Final Report (14d) sent on: ___
- [ ] Not subject to ENISA reporting (Justification: ___)
Lessons Learned
[What was learned? What will be improved?]