Assessing how well your incident response plan worked—or didn't—requires you complete an after-action report where you outline the steps that you took, how the plan met your goals or if it fell short, and what you would do differently next time.
- Following any major incident or event,…I suggest you do an after action report…to capture details about what happened, what you did,…and what the outcome looked like.…The military uses AARs to document…mission success and failure, and also to capture…the steps that should be repeated…as well as note what to avoid in the future.…In business, doing an AAR is helpful…to also building layers of accountability…into your reputation management processes.…
Following your incident, gather the key individuals involved…into a room and walk through these steps.…First, what happened?…In the most straightforward way,…describe the events that occurred.…List who was involved in the event,…what type of incident it was, and give an overview…of internal and external factors that were present.…Next, list out how your incident response plan…worked or didn't to resolve the issue.…Sequentially explain how the plan unfolded,…where you had to change course,…and mention any external factors that couldn't possibly…have been anticipated which affected the outcome.…
- Identify why reputation risk management is important.
- Determine the elements that impact reputation risk management.
- Recognize how to put an incident response plan in to action.
- Explore the fundamentals of the case study involving the Equifax data breach of 2017.
- Examine the important parts of the case study involving Starbucks kicking out customers in 2018.