The Incident Log gives your organisation a structured way to record, manage and track cyber incidents from initial detection through to resolution. An accurate log protects you, supports any reporting obligations and helps you learn from events.
Under the UK GDPR, certain personal data breaches must be reported to the ICO within 72 hours of becoming aware of them. That's only possible if you have a clear, timestamped record of what happened and when. The Incident Log creates that record automatically as you work through an incident.
Personal data breaches above a certain threshold must be reported to the ICO within 72 hours. A complete incident log means you'll always have the information required to make that assessment and filing.
CE includes expectations around incident response. A structured log with dates, actions and resolutions is evidence that your organisation takes incidents seriously and manages them appropriately.
The Incident Log feeds into your executive reports — so leadership always knows how many incidents occurred, how quickly they were resolved, and whether any remain open.
Every incident moves through a clear lifecycle — from initial report through to resolution. A full action log and timestamped notes trail means you always know exactly what happened and what was done about it.
Assign each incident to a named owner from your team. Accountability is clear and tracked throughout the lifecycle.
Add timestamped notes at every stage. The complete chronological log is preserved permanently — even after the incident is resolved.
Tag incidents as Cyber Essentials-relevant so they're surfaced in your CE tracking and executive reports.
Not every suspicious event is a reportable breach — but all of them are worth logging. Cyber Assure's Incident Log is designed to capture anything from a low-severity nuisance through to a significant breach.
Incident Log is included in all Cyber Assure plans. Get in touch to find out more.