SECURITY INCIDENTS
Incident Management
10 incidents in queue · 4 active investigations · MTTR 3.8h (SLA)
CRITICAL
2
Immediate action
HIGH
5
Elevated priority
ACTIVE
4
Investigating now
RESOLVED
3
Contained or closed
RESPONSE SNAPSHOT
Key response metrics — same nested tile language as the Unified Overview pattern.
FIRST RESPONSE
12m
SLA 15m
CONTAINMENT
1.4h
SLA 2h
MTTR
3.8h
SLA 4h
SLA
91%
Compliance
RE-OPEN
2.3%
Target under 5%
QUEUE
10
Total incidents
SECURITY INCIDENTS
| Incident | Severity | Status | Assets | Assignee | Detected | ||
|---|---|---|---|---|---|---|---|
Ransomware Attack Detected INC-2024-001 · Malware | CRITICAL | INVESTIGATING | 23 | Sarah Chen | 15m ago | ||
Data Exfiltration Attempt INC-2024-002 · Data Breach | HIGH | CONTAINED | 5 | James Rodriguez | 2h ago | ||
Privilege Escalation — Domain Admin INC-2024-003 · Unauthorized Access | HIGH | INVESTIGATING | 2 | Sarah Chen | 4h ago | ||
DDoS Attack on Web Infrastructure INC-2024-004 · Network Attack | MEDIUM | RESOLVED | 12 | Michael Kim | 8h ago | ||
Phishing Campaign — CFO Impersonation INC-2024-005 · Social Engineering | HIGH | INVESTIGATING | 8 | Emily Taylor | 10h ago | ||
Cryptominer on Cloud VM INC-2024-006 · Malware | MEDIUM | RESOLVED | 3 | Alex Petrov | 1d ago | ||
Brute Force on VPN Gateway INC-2024-007 · Credential Attack | MEDIUM | CONTAINED | 1 | Michael Kim | 1d ago | ||
Insider Threat — Bulk Download INC-2024-008 · Insider Threat | HIGH | INVESTIGATING | 1 | James Rodriguez | 2d ago | ||
Supply Chain Alert — npm Package INC-2024-009 · Supply Chain | CRITICAL | NEW | 14 | Sarah Chen | 3d ago | ||
Lateral Movement via WMI INC-2024-010 · Lateral Movement | HIGH | CLOSED | 7 | Emily Taylor | 5d ago |
RESPONSE METRICS
Avg Initial Response
SLA: 15m ✓
Avg Containment
SLA: 2h ✓
MTTR
SLA: 4h ✓
SLA Compliance
+3% vs last month
Re-opened Rate
Target: under 5% ✓
BY CATEGORY
MITRE ATT&CK COVERAGE
Avg coverage: 74% across 6 tactics