Incident Response Plan

(last updated Aug 8, 2023)

1. Purpose

This document outlines the procedures to follow in the event of a security incident or breach at Lace Software. The goal is to respond quickly and effectively to contain, eradicate, and recover from security incidents.

2. Scope

This plan applies to any suspected or confirmed security incident involving Lace Software's information systems, networks, data, and other assets.

3. Response Team

The Incident Response Team is responsible for assessing the incident, minimizing impact, coordinating containment, eradication and recovery efforts, and keeping leadership informed.

4. Incident Classification

Incidents are classified into three severity levels based on impact:

5. Incident Response Procedures

Detection and Analysis

Containment

Eradication

Recovery

Post Incident Activity

6. Testing & Training