Incident response is a planned approach to addressing and managing the reaction after a cyber-attack or network security breach. The goal is to have clear procedures defined before an attack occurs to minimise damage, reduce disaster recovery time, and mitigate breach-related expenses.