The SIIM Roadmap describes the 14 overall actions that organisations should take to manage and benefit from information about safety- or security-related incidents.
Managing safety and security incident information should be a continuous learning cycle. The response to and analysis of one incident should inform the response to and analysis of future incidents. The Roadmap below describes the 14 actions under four key steps that organisations and employees should take to effectively manage information about a security-related incident. The order of the steps and the person responsible for each action may vary according to the situation, and should be adapted to reflect the nature of a particular incident, the organisation affected by the incident and the operational context.
Click on the relevant Step (1 to 4) or Action (1 to 14) to learn more about each one.
Access external incident information
Share incident data externally
Analyse data on multiple incidents
Improved access and security