Incident response is an ongoing process that requires a risk mitigation strategy covering operational, legal and reputational risk. The incident response team should expand beyond responding to security threats, but should include management, human resources, legal, audit and risk management specialists, general counsel and public relations. Incident simulations, tabletop exercises and reporting are key processes to incident response planning, enabling teams to test response plans, identify gaps and refine response processes that define incident response preparation. An incident response plan must be designed in a way that can help an organization respond quickly and efficiently in the event of a breach.”]
Source: https://www.cuinfosecurity.com/blogs/cybersecurity-incident-response-managing-risk-p-2734