Reporting a cyber security incident

Created:  20 Sep 2016
Updated:  20 Sep 2016

Reporting a cyber security incident:

In order for the NCSC IM team to understand the potential scale, severity and impact of the incident please provide us with answers to the following points:

  1. Who are you?
  2. What organisation are you reporting an incident for?
  3. What is your role in this organisation?
  4. What are your contact details?
  5. A summary of your understanding of the incident, including any impact to services and/or users
  6. What investigations and/or mitigations have you or a third party performed or plan to perform.
  7. Please provide the output of any technical analysis.
  8. Who else has been informed about this incident?
  9. What are your planned next steps?


Please send the answers to the above to the NCSC Incident Management Team using the following email address: (



Was this information helpful?

We need your feedback to improve this content.

Yes No