Sample Incident Response Plan

This work was contributed by IntelliSOFT Consulting Ltd. in July 2024 thanks to a generous grant from Digital Square for CyberSecurity improvement work, organized by OpenMRS Inc.

About the Incident Response Plan

An incident response plan (IRP) is a written document to help Implementers before, during, and after a security incident. This sample incident response plan outlines the procedures for discovering services, categorizing incidents, proposing monitoring procedures, and handling communication during an incident and escalating.

This Sample Response Plan is not intended to be exhaustive or legal advice. Implementers are encouraged to update this sample plan based on their own needs, regional requirements, etc.

The document is divided into the following sections, detailing step-by-step procedures for detecting, responding to, and recovering from cybersecurity incidents within OpenMRS:

  1. OpenMRS Threat Modelling

  2. Cyber Security Incidents Categorization Matrix

  3. OpenMRS Incidence Management Process

  4. Incident Management Daily Work SOP

See the Sample Incident Response Plan

Feel free to review and leave comments and questions using this Google Doc link: Incident Response Plan

PDF & Word versions (as of July 30 2024):

 

 

Related pages