The IR for Management template enables CISOs and CIOs to communicate with the two key points that management cares about. Management doesn’t think in terms of trojans, exploits, and lateral movement, but rather business productivity. There is no one-size-fits-all in a security incident, so the template is modular and can be easily adjustable to any variant. The IR Reporting for Management PPT template follows the SANSNIST IR framework and comprises the following stages:Attacker presence is detected beyond doubt.
Source: https://thehackernews.com/2019/10/cybersecurity-incident-response.html