IncidentsOverview

Incident Reports

This is the placeholder for all incident reports along with some guidelines on how to report them.

This is a work in progress!

Documentation Requirements:

Please add your requirements or comment on what we have here. At this moment, I just list some requirements to be completed later. We can use this requirements to build document templates on incidents.

List of requirements about each incident:

  • When the incident happened?
  • What was the source of awknoledgement? (SecurityHub, CostumerBugReport, etc.)
  • Which projects are affected?
  • Which teams are involved?
  • Which resources are affected?
  • What is the type of incident? (Infra, Security, etc.)
  • How did we investigate?
  • How did we resolve the issue?
  • How much time it took to resolve the issue?
  • Are there any related actionable items to prevent the incident?
Reading Center ArchitectureAWS Security Hub Alerts on S3