How do organizations use incident response plans to respond to security threats?

What will be an ideal response?

When safeguards fail and an incident occurs, organizations need to execute an incident response plan. First, every organization should have an incident response plan as part of the security program, and it should ensure employees know where to find it when an incident occurs. The plan should include how employees are to respond to security problems, whom they should contact, the reports they should make, and steps they can take to reduce further loss. The plan should provide centralized reporting of all security incidents. Such reporting will enable an organization to determine if it is under systematic attack or whether an incident is isolated. Centralized reporting also allows the organization to learn about security threats, take consistent actions in response, and apply specialized expertise to all security problems.