Incident Management Home Cybersecurity Dictionary Incident Management Cybersecurity incident management is the real-time process of identifying, managing, monitoring and analyzing computer and network security threats or incidents (which may include anything from attempted intrusions to successful compromises/data breaches) and responding appropriately. Incident management makes use of both technical and human assets in analyzing and responding to threats. Response teams adhere to established processes and a designated incident coordinator manages the organization’s response to breaches and other security incidents. Related TermsSOC - Security Operation CenterSIEM - Security Information and Event ManagementMSS - Managed Security ServicesMSSP - Managed Security Service ProviderIR - Incident ResponseEDR - Endpoint Detection and ResponseNTA (Network Traffic Analysis) and NBA (Network Behavior Analysis)Indicator of Compromise (IOC)Threat HuntingTTPs - Tactics, Techniques, and ProceduresCTI - Cyber Threat Intelligence Share: Seeking Clarity? View the Cybersecurity Dictionary for top terms searched by your peers. Back to the Dictionary RELATED INSIGHTS DOWNLOAD October 22, 2018 PCI Compliance Does Not Always Equal Security Learn how a risk-centric approach can be applied to each PCI requirement. See Details Read more about PCI Compliance Does Not Always Equal Security BLOG October 29, 2018 Leveraging Risk Strategy to Move Beyond Check-Box PCI Compliance Merchants often put compliance spending at the top of their list for budgeting purposes because the consequences of non-compliance can be expensive. F... See Details Read more about Leveraging Risk Strategy to Move Beyond Check-Box PCI Compliance DOWNLOAD July 31, 2017 PCI Services Learn how Optiv can help you plan, build and run your PCI compliance program. See Details Read more about PCI Services How Can We Help? Let us know what you need, and we will have an Optiv professional contact you shortly.