OTA has a really good report, with the basics you need to know about ‘Incident response’ and how to create an effective incident reponse policy for your organization.
Given the rampant data breached taking place and the fact that like it or not, online data storage is here to stay and is only going to increase in times to come; it makes sense to pre-empt any potential incidents that might take place. The way to go about doing it is to create a policy in conjunction with the key departments of your organization.
Have a look at the report.