SIIM Roadmap

Appropriate staff members should analyse the information collected in the formal incident report to understand Appropriate staff members should analyse the information collected in the formal incident report in order to understand why the incident occurred. Understanding the motivation behind an incident – whether it was an attack by others or caused by an employee not following procedures – is key to an organisation’s preparedness for and ability to prevent future incidents of the same kind. Organisations should do the following when analysing an incident:

• Carefully analyse the causes and impacts of the incident
• Assess whether similar incidents have occurred in the past
• Assess whether organisational procedures were followed
• Analyse the appropriateness and effectiveness of the incident management response
• Consider any personal characteristics of the individuals involved in the incident (gender, religion, ethnicity, etc.) that could be a factor in or motive for the incident.

---

---