GRC - Governance, Risk & Compliance > HOPEX Cyber Resilience > Building Cyber Resilience > Steps in the Cyber Resilience Process > Managing Cyber-related Incidents
Managing Cyber-related Incidents
You must document, notify, and follow-up cyber incidents.
*For general information on incidents, see Collecting Incidents .
Incident causes and incident type
In the incident properties, select the Qualitative Analysis section enables to:
Enter the incident Root Cause Description.
Select the Incident type.
*The Incident type corresponds to the materialized risk type.
Major incident
An incident may be considered as Major (check box in the Incident properties Characteristics page).
*An incident is considered as major when it has a high and adverse impact on important or critical organization functions.
This is a useful characteristic when it comes to generating the Major Incidents MS Word report. See Major Incident Report (MS-Word).
Reports related to incidents
Specific reports allow you to:
generate a Major incident reports to inform authorities.
analyze incidents.
monitor cyber-related incidents.
Viewing the BCPs triggered following an incident
In an incident properties, the Crisis Management page gives you indications on the triggered BCPs.
*This page is available if at least one triggered BCP is connected to the incident.