How resilient is your plan, really?
Most organisations have an incident response plan. But few know how resilient it really is.
This scorecard helps IT and InfoSec leaders quickly identify the gaps that matter. The ones that slow you down, expose you to regulatory risk or leave your plan unusable when the pressure’s on.
Whether you’re starting from scratch or reviewing a long-standing Incident Response Plan, this tool gives you a fast, structured way to benchmark your current position and focus on what actually needs fixing.
Build a clearer picture of your readiness + the story your board needs to hear.
What’s inside?
- A downloadable, editable Excel scorecard
- 16 key controls grouped by domain (Governance, Recovery, Regulatory etc.)
- Simple scoring system with weighted maturity indicators
- Built-in dashboards and visual trackers
- Real-world control descriptions to guide self-assessment
- Ready to use in board packs, audits or tabletop exercises
Preview the ‘Cyber Incident Response Planning Scorecard’
Who it’s for?
This scorecard is designed for:
- IT and InfoSec managers in financial services, insurance, legal, manufacturing or any other business looking to better prepare for cyber attacks.
- CISOs, operational risk or business continuity leads
- Anyone responsible for building, maintaining or testing IR plans
Why it matters
Regulators expect structured, tested, documented incident response planning. So does your board. So do your customers.
But most plans fall short in the details. Out-of-hours contact structures, decision ownership, recovery testing, regulatory triggers. This tool helps you surface those issues before they matter most.
