Skip to main content
Microsoft Security

Incident response

Incident response is the detection, management, and recovery from cyberattacks, security breaches, or IT incidents. The purpose of incident response is to prevent or limit the damage and disruption caused by such threats, and to prevent future attacks.