Commit 8e1b2d54 authored by Marcello Evangelista's avatar Marcello Evangelista

Introducting the incident response plan

parent 268833a7
# Purpose
The purpose of this policy is to disclose our Incident Response Plan and Workflow.
# Scope
This plan is engaged towards every Operational Incident in production environments, either them being internal or external.
# Plan
![alt txt](https://www.lucidchart.com/publicSegments/view/49defad1-d850-4f11-8876-67d787f4b0f2/image.jpeg)
# Shared Responsibility Model
OlinData maintains a Shared Responsibility Model with its clients, especially towards the MSP product. We feel this model allows for a great amount of trust between both parties and also helps to integrate our Ops Teams and customers.
# Reporting Incidents
Every incident identified will have a correspondent response and analysis as the workflow suggests.
Please refer to the internal compliance templates made available by the security team.
# Policy Compliance
1. Compliance Measurement
The Infosec team will verify compliance to this policy through various methods, including but not limited to, periodic walk-thrus, video monitoring, business tool reports, internal and external audits, and feedback to the policy owner.
1. Exceptions
Any exception to the policy must be approved by the Infosec team in advance.
1. Non-Compliance
An employee found to have violated this policy may be subject to disciplinary action.
# Revision History
Please check the commit history for this file.
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment