Incident vs Crisis

What’s the difference between an incident and a crisis?

Not every incident/event is a crisis, but it can have the potential to become a crisis if not handled appropriately.

For example, a stolen laptop that is quickly excluded from connecting to the network would be classified as an incident. 

If the laptop were to be used to connect to the network and steal personal customer data you could very quickly be in “crisis mode” and dealing with a very damaging event in public.

CEN / TS 17091 defines a crisis as an “unprecedented or extraordinary event or situation that threatens an organization and requires a strategic, adaptive, and timely response in order to preserve its viability and integrity”.

The standard includes a section on principles for crisis management which serve as a good guide for the management of any incident that has the potential to become a crisis. 

They are:

  1. a) seek understanding of the situation.
  2. b) achieve control as soon as possible.
  3. c) communicate effectively, both internally and externally.
  4. d) be prepared with clear, universally understood structures, roles, and responsibilities.
  5. e) build situational awareness through good information management and coordinated working.
  6. f) have a clear and well-rehearsed decision-making and action-driving process in line with the core values and objectives of the organization.
  7. g) implement effective leadership at all levels of the organization.
  8. h) ensure people with specific crisis management roles are competent through appropriate training, exercising, and evaluation of their knowledge, skills, and experience.

 

Incident Management starts well before an incident occurs. You need to consider what types of incidents are likely to occur and develop “trigger criteria” which if met will mean specific plans to address that type of incident are invoked.

 

Summary

Hopefully you now have a better understanding of the key differences between an incident and a crisis, and the potential impacts of both on your business.

To find out more about incident management and how best to prepare yourselves in the event of crises, request a copy of our free White paper on Risk Management and Operational Resilience.

Recent News

CalQRisk Shortlisted as Best Technology Partner in Housing Digital Innovation Awards

CalQRisk has been named a finalist in the Housing Digital Digital Innovation awards. CalQRisk is nominated as best ...
Read More

CalQRisk Achieves G-Cloud 14 Approved Supplier Status

Delighted to confirm that following on from our GCloud 13 supplier status, that CalQRisk has been listed as ...
Read More

CalQRisk named as Finalist for Cyber Security Provider of the Year at the Cyber Insurance Awards Europe

CalQRisk are thrilled to be finalists for the Cyber Security Solution Provider of the Year at the Cyber ...
Read More

Volunteer Succession Planning – ‘Tomorrow’ has arrived.

Strong succession planning is critical for the viability of all businesses but can be particularly challenging for volunteer-led ...
Read More

What is CSRD?

The Corporate Sustainability Reporting Directive (CSRD) is a framework for non-financial reporting which is mandatory for large companies ...
Read More

CalQRisk Triumphs at the 2024 FS Awards, Winning Compliance and RegTech Award

At a distinguished ceremony held at the iconic Mansion House, CalQRisk emerged as the proud recipient of the ...
Read More

NoFrixion Selects CalQRisk for its DORA Compliance Efforts

NoFrixion, the Embedded Banking company based in Dublin, Ireland, has announced its partnership with CalQRisk to ensure compliance ...
Read More

CalQRisk is a finalist in the FS Awards

CalQRisk has been named as a finalist in the competitive and prestigious FS Awards for the Compliance and ...
Read More

CalQRisk Customer Support Manager wins Rising Star at Irish Early Career Awards 2024

Congratulations to our Customer Support Manager, Eimear Farrell, who was named as a Rising Star in the Fintech ...
Read More

CalQRisk wins Pitch Competition at ESCO Cyber Solution Days Event, Kilkenny, September 2024

The Cyber Ireland (CI) CISO Forum and ESCO Cyber Solution Days event took place in the Lyrath Hotel, ...
Read More