Security Incident Response is a complex Process involving many different actions - from moment of identifying Incident to Forensic report. Actions rely on existing Technology, Processes and People available. During this session we will propose methodology of classification different response actions based on risk and complexity. This approach can help organizations to improve their Incident Response Process and start a long road of Automation. And of course Demo.