Incident Handling

nouncandidate·updated May 12, 2026

The mitigation of violations of security policies and recommended practices.

Framework senses

3 senses across 3 frameworks

SANS Glossary of Security Terms1 senseview framework →

§1: Incident Handling is an action plan for dealing with intrusions, cyber-theft, denial of service, fire, floods, and other security-related events. It is comprised of a six step process: Preparation, Identification, Containment, Eradication, Recovery, and Lessons Learned.

NISTIR 7298: Glossary of Key Information Security Terms, Revision 21 senseview framework →

§1: The mitigation of violations of security policies and recommended practices.

NIST SP 800-611 senseview framework →

§1: The mitigation of violations of security policies and recommended practices.