Definition: Architecture Decision Record from where you should specialise the ADR SBBs regarding the Security Incident Response Plan
Source: ISO/IEC/IEEE 42010:2022
Source reference: https://www.iso.org/standard/74393.html
Additional information: The Security Incident Response Plan is a concept that outlines the procedures and protocols that must be followed in the event of a security breach or incident. The plan typically includes steps for identifying the incident, containing the damage, investigating the cause, and restoring normal operations. It also includes guidelines for communication with stakeholders, such as customers, employees, and regulatory bodies. A well-designed Security Incident Response Plan can help minimize the impact of a security incident and reduce the risk of future incidents.
Example: Security Incident Response Plan:
Decision: Establishing a security incident response plan to handle and respond to security breaches or incidents promptly and effectively.
Rationale: A well-defined incident response plan helps mitigate the impact of security incidents, comply with incident reporting requirements, and facilitate the recovery and restoration of systems and data.
LOST view: Digital Solution Architecture Decisions Catalogue view
Identifier: http://data.europa.eu/dr8/egovera/SecurityIncidentResponsePlanGoal
EIRA traceability: eira:DigitalSolutionArchitectureDecisionGoal
ABB name: egovera:SecurityIncidentResponsePlanGoal
EIRA concept: eira:ArchitectureBuildingBlock
Last modification: 2023-06-15
dct:identifier: ADR-20230515180947794
dct:title: Architecture Decision Record about Security Incident Response Plan
eira:adr_context: The context explains why we need to make a decision. It also describes the alternatives along with the pros and cons.
eira:adr_decision: The decision describes the justification for why the particular solution was accepted. It has more emphasis on the why rather than the how.
eira:adr_status: [Proposed (under review)|Accepted (approved and ready for implementation)|Superseded (superseded by another decision)]
eira:adr_consecuences: The consequences section contains information about the overall impact of an architectural decision. Every decision has trade-offs. That’s why it’s crucial to include the analysis to provide a clear picture.
					 
					
						
							
								
									|  |  | 
							
							
								| dct:modified | 2024-01-28 | 
| dct:identifier | ADR-20230515180947794 | 
| dct:title | Architecture Decision Record about Security Incident Response Plan | 
| skos:example | Security Incident Response Plan:
								Decision: Establishing a security incident response plan to handle and respond to security breaches or incidents promptly and effectively.
								Rationale: A well-defined incident response plan helps mitigate the impact of security incidents, comply with incident reporting requirements, and facilitate the recovery and restoration of systems and data. | 
| eira:adr_context | The context explains why we need to make a decision. It also describes the alternatives along with the pros and cons. | 
| eira:adr_decision | The decision describes the justification for why the particular solution was accepted. It has more emphasis on the why rather than the how. | 
| eira:adr_status | [Proposed (under review)|Accepted (approved and ready for implementation)|Superseded (superseded by another decision)] | 
| eira:adr_consecuences | The consequences section contains information about the overall impact of an architectural decision. Every decision has trade-offs. That’s why it’s crucial to include the analysis to provide a clear picture. | 
| eira:concept | eira:ArchitectureBuildingBlock | 
| eira:definitionSource | ISO/IEC/IEEE 42010:2022 | 
| eira:definitionSourceReference | https://www.iso.org/standard/74393.html | 
| skos:note | The Security Incident Response Plan is a concept that outlines the procedures and protocols that must be followed in the event of a security breach or incident. The plan typically includes steps for identifying the incident, containing the damage, investigating the cause, and restoring normal operations. It also includes guidelines for communication with stakeholders, such as customers, employees, and regulatory bodies. A well-designed Security Incident Response Plan can help minimize the impact of a security incident and reduce the risk of future incidents. | 
| eira:PURI | http://data.europa.eu/dr8/SecurityIncidentResponsePlanGoal | 
| dct:type | eira:SecurityIncidentResponsePlanGoal | 
| skos:definition | Architecture Decision Record from where you should specialise the ADR SBBs regarding the Security Incident Response Plan | 
| eira:view | Digital Solution Architecture Decisions Catalogue view | 
| eira:eifLayer | N/A | 
| skos:broader | http://data.europa.eu/dr8/DigitalSolutionArchitectureDecisionGoal |