CISM - Incident Management - Section 4.12
Conduct post-incident reviews to identify lessons learned, root causes and corrective actions for continuous improvement.
Conduct a post-incident review to identify lessons learned, perform root cause analysis, and define corrective actions that prevent recurrence and improve incident response capability. Ensure findings are documented, assigned to owners, and tracked to closure so that each incident drives measurable improvement to the programme.
Post-incident reviewLessons learnedRoot cause analysisCorrective actions
More in this domain
Back to all Incident Management objectives, or the CISM cert hub.
Examworthy is not affiliated with or endorsed by ISACA. Original, blueprint-aligned practice material only.