Privilege Escalation Incident Report

Incident Details

Date & Time of Incident Location / System(s) Affected Reported By Reported To Description of Incident

Detection & Analysis

How was the incident detected? Indicators of Compromise Accounts Involved Privilege Level Achieved

Containment & Eradication

Actions Taken Date & Time Contained

Recovery

Systems Restored Recovery Time

Root Cause Analysis

Root Cause Supporting Evidence

Lessons Learned & Recommendations

Lessons Learned Recommendations

Report Prepared By

Name Date