Managing Cyber-Related Incidents
You must document, notify, and follow-up cyber incidents.
For general information on incidents, see Collecting Incidents .Incident causes and incident type
In the incident properties, select the Qualitative Analysis section enables to:
• Enter the incident Root Cause Description.
• Select the Incident type.
The Incident type corresponds to the materialized risk type.Major incident
An incident may be considered as Major 
(check box in the Incident properties Characteristics page.
(check box in the Incident properties Characteristics page. An incident is considered as major when it has a high and adverse impact on important or critical organization functions.This is a useful characteristic when it comes to generating the Major Incidents MS Word report. See Major Incident Report (MS-Word).
Calculation of time elapsed since the incident detection
A computed characteristic enables to display the number of days/hours elapsed since the detection of the incident.
This computed characteristic is displayed:
• in the Characteristics page of the incident properties
• in column, in the list of incidents accessible from the Incidents menu
• in the Major Incident MS Word report
• in the Incidents properties of the following object types:
• risks
• process categories
• processes
• macro-incidents
• Org-Units
• applications
• business lines
• products
Reports Related to Incidents
Specific reports allow you to:
• generate a Major incident reports to inform authorities.
• analyze incidents.
• monitor cyber-related incidents.
See Incident Monitoring.Viewing the BCPs triggered after a incident
In an incident properties, the Crisis Management page gives you indications on the triggered BCPs.
This page is available if at least one triggered BCP is connected to the incident.