The process of identifying, responding to, and resolving security incidents in an organization. Incident management includes identifying the cause and extent of an incident, implementing appropriate response measures, and restoring normal operations. Examples include responding to a data breach or implementing contingency plans for a network outage.