Sample Incident Response Plan
This work was contributed by IntelliSOFT Consulting Ltd. in July 2024 thanks to a generous grant from Digital Square for CyberSecurity improvement work, organized by OpenMRS Inc.
About the Incident Response Plan
An incident response plan (IRP) is a written document to help Implementers before, during, and after a security incident. This sample incident response plan outlines the procedures for discovering services, categorizing incidents, proposing monitoring procedures, and handling communication during an incident and escalating.
This Sample Response Plan is not intended to be exhaustive or legal advice. Implementers are encouraged to update this sample plan based on their own needs, regional requirements, etc.
The document is divided into the following sections, detailing step-by-step procedures for detecting, responding to, and recovering from cybersecurity incidents within OpenMRS:
OpenMRS Threat Modelling
Cyber Security Incidents Categorization Matrix
OpenMRS Incidence Management Process
Incident Management Daily Work SOP
See the Sample Incident Response Plan
Feel free to review and leave comments and questions using this Google Doc link: Incident Response Plan
PDF & Word versions (as of July 30 2024):