olemus
ISO/IEC 27035:
toimingud infoturvaintsidentide avastamiseks,
intsidentidest teatamiseks, intsidentide hindamiseks, intsidentidele reageerimiseks, intsidentidest õppimiseks
=
actions of detecting, reporting, assessing, responding to, dealing with, and learning from information security incidents

ülevaateid
https://wikihead.files.wordpress.com/2010/10/incident-handling-ppt.pptx

https://www.itu.int/en/ITU-D/Cybersecurity/Documents/Computer%20Incident%20Handling%20.pdf

http://www.symantec.com/connect/articles/introduction-incident-handling

https://www.youtube.com/watch?v=xV4qATtR4p4

http://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-61r2.pdf

https://www.enisa.europa.eu/publications/good-practice-guide-for-incident-management/at_download/fullReport

https://www.cisa.gov/sites/default/files/publications/Federal_Government_Cybersecurity_Incident_and_Vulnerability_Response_Playbooks_508C.pdf

http://www.dcs.gla.ac.uk/~johnson/book/C_Johnson_Accident_Book.pdf

https://apps.dtic.mil/sti/pdfs/ADA413778.pdf

https://www.govcert.gov.hk/doc/ispg-sm02-v1.2_en.pdf