Incident response

1 Go to resource

Incident Management

The NCSC defines a cyber security incident as:

A breach of a system’s security policy in order to affect its integrity or availability
The unauthorised access or attempted access to a system

Cyber incidents can take many forms, such as denial of service, malware, ransomware or phishing attacks.

Related resources

Cyber Advisor Scheme

The NCSC scheme to help organisations of all sizes access consistent, high quality cyber security advice. Resource to support with Cyber Essentials readiness and certification

Cyber Security Professionals

This guide is for those who are experts in cyber security.

Small & Medium Sized Organisations

Cyber security advice for businesses, charities, clubs and schools with up to 250 employees. You’re likely to fall into this category if you do not have a dedicated team internally to manage your cyber security.

Phishing – how to report to the NCSC

How to report a phishing email to the NCSC.

Cyber Resilience Framework

Provide a common, effective way for Scottish public sector organisations to assess their cyber resilience arrangements, identify areas of strength and weakness, gain reasonable confidence that they are adhering to minimum cyber resilience requirements, and take decisions on how/whether to […]

Police Scotland’s Cyber Security Strategy 2020

This strategy sets out how Police Scotland will take a proactive approach to respond to cyber demand, ensuring that we are future focused and able to adapt our policing model to suit the needs of the communities they serve.