Detail out the security incident response program

Every organization should have a well-defined and documented plan of action to put into place if a security incident does occur. The cybersecurity manager should ensure that this program is tested throughout the organization and that every high-level manager knows his or her duties during such an incident. This may be a responsibility that is the cybersecurity manager’s alone, or it could be a shared responsibility.
Source :