Your organization’s physical security is a top priority. The right incident management system will enable your security team to observe, document, and respond to situations through data collection that may otherwise be missed. This means that the data won’t be fragmented, thus preventing more near misses and capturing more details during an incident.

Choosing the right incident management system takes thought—and like most strategic business decisions, it pays to get it right the first time.

The right solution is something your security operations and investigations staff will have to rely on every day. You need to know that it works, that you can be confident about its value, and that your incident management tools can grow with your business. 

To learn how to take a proactive approach to incident management, you first need to know how to determine the best incident management software for your organization.  Get the Ultimate Guide Now.

What is an incident management platform?

First things first: what is an incident management platform? Why do you need one for your organization? Who’s responsible for maintaining an incident management system?

Physical security incident management software is designed to help you manage and respond to physical security incidents in a timely and efficient manner. It typically includes a range of features to support incident reporting, tracking, and analysis, as well as tools for communication and collaboration among relevant stakeholders.

No matter what industry you’re in, your organization has a responsibility to take action against existing and potential security threats. As technology advances, so does the sophistication of threats to your organization’s security. An incident management platform allows you and your security team to take a proactive approach to protecting your organization, providing an easily accessible software solution that supports your incident management team workflow, from intake to reporting on your impact. In addition to improving your data collection and analysis, the right incident management software solution can fast-track your organization’s security investments and needs by allowing you to show the effects of vulnerabilities on KPIs and the ability to report on the impact of security initiatives.

The best incident management solutions improve a robust security program by decreasing gaps in visibility while providing greater efficiency, clearer insights, quicker time to value, and complete, comprehensive security.

Who is responsible for maintaining a physical security incident management software system?

The responsibility for maintaining a physical security incident management software system can vary depending on the organization and the specific system in question. In general, it is often the responsibility of the organization’s security or risk management team to oversee the implementation, configuration, and ongoing maintenance of the system.

The security or risk management team may work in collaboration with other teams within the organization, such as facilities management, IT, and legal, to ensure that the system is properly configured and integrated with other systems and processes. The security team may also be responsible for defining incident response procedures, training staff on how to use the system, and regularly testing the system to ensure that it is functioning properly. Additionally, some organizations may choose to outsource the maintenance and support of their physical security incident management software system to a third-party vendor, in which case the vendor would be responsible for maintaining the system on behalf of the organization.

What features & benefits should I look for in incident management software?

When determining the incident management system that will work best with your organization, there are critical features to consider. Your ideal incident management solution must:

Have simple tools that are easily accessible to the people who use them
Can be customized to include the features and configurations you need for your organization’s use cases
Provide reliable risk data and reporting capabilities

Before comparing available incident management solutions, you first need to know what type of system you need. To do this, ask yourself:

Do you need a workflow system to help you stay on top of incidents, investigations, and assignments
Would it be beneficial to you to have a case management solution where you can group multiple incidents together?
Do you require an investigations section that can be hidden from other users?
How robust does your reporting need to be?
- Do you have an internal person doing data analysis, or would you need the tools to do this yourself?
- Are you looking to remove the need for a third-party reporting system?
How important is your search functionality?
- Do you want to be able to search everything in your incident management system, including user-defined fields?
Do you need real-time dispatching and officer management software?
Is it important for you to have a way for your employees, or anyone in the corporation, to fill out an incident report or request an officer using their desktop, tablet, or smartphone?
Do you need anonymous incident reporting capabilities, like hotlines?

Now that you know the basics to look for, here are some of the most important features and benefits to look out for:

Efficiency and ease of use

When searching for an effective incident management platform, comparing your options is key. Speaking to vendors can help better understand their systems, but understand that they want the sale; so they’ll try to convince you that their incident management solution is the best out there. Consider your organization’s needs, including:

How can it help keep track of your organization’s incidents, and make sure business rules are enforced
For an individual user, how easy is it to query data, and gather reports about a specific activity, incident, investigation, or case?
Are the incident management tools usable out of the box?

Look at how the incident management system makes your workflow more efficient on a macro and micro level. There are no absolute numbers here, but the solution should minimize the number of clicks to create an incident, eliminate redundancies, and, ultimately, detect, and manage security threats.

Don’t just take a vendor’s word that their solution is the best. Challenge them to give you a demo, speak to their customer references, and create a proof of concept when needed. Let them show you how closely the incident management system fits with how you work. If it doesn’t fit right out of the box, then look at what adjustments need to be made so that their application can fit your existing system.

Flexibility, adaptability, & scalability

As your business grows, you don’t want to be stuck with a cap on users or a singular region limit. Make sure the application can grow and adapt with your security department and the company as a whole. After all, in the future, you may want to have your HR, Legal, or Brand Protection departments adapt and share your incident management solution.

Almost every software deployment is dynamic, and the needs of two customers will never be exactly the same. You want to make sure that the vendor offers a strong out-of-the-box application that can be configured to meet your unique needs.

When shopping around, it’s important to consider:

How easy is it to change up the fields and fields labels (even add new fields) to match your organization’s terminology and priorities?
Will any of these changes impact your ability to update to new releases?
Can the solution grow as your security department does?
How difficult is it to add new users or locations?

Keep in mind that you can always ask the vendor to work with you to solve unique challenges or information requirements. For example, if your company has a policy where a year or more of data needs to be purged, ask your incident management solution vendor if they can create a script that allows that to happen.

Data segregation & application security

Another feature may want in your security incident management platform is the ability to allow sharing of certain types of data (say, for collaboration between your IT and Legal departments during an investigation). At the same time, you want to ensure that a security officer isn’t seeing all the information that the Director of Security sees. That’s why, when comparing incident management software, you should look at:

Whether or not the incident management tools let you share or restrict data
If the incident management solution can accommodate your data-sharing needs while, at the same time, enforcing data security

Integrations & mobile solutions

Integration and interoperability are key for your security operations center (SOC). Whether it’s other devices, security applications, ERPs, or legacy systems, you’ll need to ensure that the data flow can be pushed and pulled between the incident management system and other applications.

Adding a mobile solution can also help security officers or investigators who are in the field. Having activity, incidents, people, vehicles, and company data on a smartphone are critical. Your team needs to connect from anywhere, at any time.

Depending on your organization’s needs, having an incident management system that breaks down data silos may be an important feature. Other items to consider may include:

An open API or a web service that allows you to connect the system to other applications
An AI-enabled incident management software that either integrates into an existing or runs on its own, application for ease of use
A mobile solution with the same (or similar) capabilities of a desktop application
The ability to create an incident on a mobile app and synced later if an internet connection is lost
Uploading photos and videos from smartphones right into an incident record

For more, take a guided tour to see Resolver’s Incident Management Software in action.

How do I choose the best incident management platform for my organization?

Now that you know what to look for in an incident management platform, it’s time to select the right vendor. It’s important to remember that an effective solution will provide support before, during, and after an incident. From monitoring to communicating and following up, there are plenty of full-service platforms for you to compare. Below are some factors you may want to consider:

Company authority

When considering an incident management solution, ask questions about the vendor and their clients. This will help you get a better sense of their expertise and capacity to handle a deployment for your organization.

Has the company been around for a while or are they a start-up?
Have they completed three to five deployments of similar size and scope?

If the vendor you’re considering is a start-up with fewer than three deployments at sizes and scopes similar to your organization’s, it’s very possible that they’re biting off more than they can chew. However, it’s also entirely possible that they have the capabilities to fulfill your needs. In order to figure out which option applies, you need to press them for more information. Make sure that they know exactly what your needs are, and don’t be afraid to provide detailed examples so you can be confident in their abilities.

Partnerships

Look at the partnerships your potential vendor has established, and how they fit in your overall security integration incident management operations. Integrations can save you money and time by bringing each of your systems together in one place. As your incident management system is a long-term solution, can the vendor fit your current and future needs?

Do they have a partner list of systems they can integrate with?
Can they do custom integrations? What about connectors out of the box?
Do they have a forward-thinking partnership strategy that allows their system to adapt to future technology changes and needs?

Data migration

This is important. You want to make sure that all of your current data can be migrated into your new system, especially when it comes to reporting. And, if you opt for a hosted model with your data stored in the cloud, find out what sort of data backup the vendor has in place to ensure your data is always safe. When speaking to a potential vendor about their incident management platform, it’s important to know if:

They can migrate data from your current system (should you be switching to a new incident management solution)
The quality of that data will improve, or if existing issues will continue
The transferred information will be reformatted
The potential fees for data migration are worth it

Support & resources

When sourcing a new incident management system for your organization, make sure your potential vendor has the resources to provide quality service in addition to the product. Some of your systems are going to be mission-critical, such as a dispatching system that runs into a security operations center. These systems cannot fail, so make sure the vendor has a backup plan.

Selecting the best incident management system can seem overwhelming, but knowing what you need, and how you want the system to work, will help you find the right solution for your organization to rely on now and in the future. Consider these questions when speaking to a potential vendor:

What types of training and support do they provide before, during, and after deployment?
Do they have board-certified security professionals (CPPs) on staff that can assist you with setting up your incident management software?
Do they have a dedicated project management team to ensure timelines are met?
Is their tech support done in-house or outsourced? Is it available 24/7?

What makes Resolver’s Incident Management Software stand out?

Resolver’s incident management software solution improves data capture, increases operational efficiency, and generates actionable insights to let security teams get ahead of incidents. Resolver’s built-in reporting capabilities enable security leaders to prove the value of their fast-track investments through an easy-to-use, best-in-class platform. After adopting Resolver’s incident management solution, customers estimated that their ability to report on the impact of their security initiatives improved by 40%. “No-code-required” implementations add to the ease of use and are supported by our highly skilled and experienced implementation team.

Are you interested in purchasing an incident management software platform for your organization? Resolver’s risk intelligence software is trusted by over 1,000 of the world’s largest organizations.  To see Resolver’s Incident Management Software in action, sign up for an upcoming product showcase.

Discover Resolver's Software

Incident Management Software

Protect your organization and prove your security team’s value with Resolver’s Incident Management application. Improve data capture, increase operational efficiency, and generate actionable insights, so you can stop chasing incidents and start getting ahead of them.

Learn More

Enterprise Risk Management Software

Provide your organization’s board and senior leaders a top-down, strategic perspective of risks on the horizon. Manage risk holistically and proactively to increase the likelihood your business will achieve its core objectives.

Learn More

Regulatory Compliance

Save time by monitoring all regulatory compliance activities, providing insights into key risk areas, and then focusing resources on addressing regulatory concerns.

Learn More

Cookie	Duration	Description
AWSALBCORS	7 days	This cookie is managed by Amazon Web Services and is used for load balancing.
BIGipServersj13web-nginx-app_https	session	This cookie name is associated with the BIG-IP product suite from company F5. Usually associated with managing sessions on load balanced servers, to ensure user requests are routed consistently to the correct server. The common root is BIGipServer most commonly followed by a domain name, usually the one that it is hosted on, but not always.
cookielawinfo-checkbox-advertisement	1 year	Set by the GDPR Cookie Consent plugin, this cookie is used to record the user consent for the cookies in the "Advertisement" category .
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
CookieLawInfoConsent	1 year	Records the default button state of the corresponding category & the status of CCPA. It works only in coordination with the primary cookie.
datadome	session	This is a security cookie set by Force24 to detect BOTS and malicious traffic.
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.
XSRF-TOKEN	6 months	This cookie is set by Wix and is used for security purposes.
_mkto_trk	2 years	This cookie, provided by Marketo, has information (such as a unique user ID) that is used to track the user's site usage. The cookies set by Marketo are readable only by Marketo.
__cfruid	session	Cloudflare sets this cookie to identify trusted web traffic.
__resolver-ref	session	This cookie is set by Resolver to ensure visitors receive unique content after submitting a form on our website.

Cookie	Duration	Description
bcookie	2 years	LinkedIn sets this cookie from LinkedIn share buttons and ad tags to recognize browser ID.
lang	session	This cookie is used to store the language preferences of a user to serve up content in that stored language the next time user visit the website.
lidc	1 day	LinkedIn sets the lidc cookie to facilitate data center selection.
sp_landing	1 day	The sp_landing is set by Spotify to implement audio content from Spotify on the website and also registers information on user interaction related to the audio content.
sp_t	1 year	The sp_t cookie is set by Spotify to implement audio content from Spotify on the website and also registers information on user interaction related to the audio content.
__cf_bm	30 minutes	This cookie, set by Cloudflare, is used to support Cloudflare Bot Management.

Cookie	Duration	Description
ADRUM_BT1	past	This cookie is set by AppDynamics and is used to optimize the visitor experience on the website by detecting errors on the website and share the information to support staff.
ADRUM_BTa	past	This cookie is set by AppDynamics and used to optimize the visitor experience on the website by detecting errors on the website and share the information to support staff.
AWSALB	7 days	AWSALB is an application load balancer cookie set by Amazon Web Services to map the session to the target.

Cookie	Duration	Description
ajs_anonymous_id	never	This cookie is set by Segment.io to check the number of ew and returning visitors to the website.
ajs_user_id	never	The cookie is set by Segment.io and is used to analyze how you use the website
CONSENT	16 years 2 months 17 days 10 hours	YouTube sets this cookie via embedded youtube-videos and registers anonymous statistical data.
ln_or	1 day	Linkedin sets this cookie to registers statistical data on users' behaviour on the website for internal analytics.
_ga	2 years	The _ga cookie, installed by Google Analytics, calculates visitor, session and campaign data and also keeps track of site usage for the site's analytics report. The cookie stores information anonymously and assigns a randomly generated number to recognize unique visitors.
_gat_gtag_UA_4655365_4	1 minute	Set by Google to distinguish users.
_gat_UA-4655365-4	1 minute	A variation of the _gat cookie set by Google Analytics and Google Tag Manager to allow website owners to track visitor behaviour and measure site performance. The pattern element in the name contains the unique identity number of the account or website it relates to.
_ga_VCHH3SM1QW	2 years	This cookie is installed by Google Analytics.
_gcl_au	3 months	Provided by Google Tag Manager to experiment advertisement efficiency of websites using their services.
_gid	1 day	Installed by Google Analytics, _gid cookie stores information on how visitors use a website, while also creating an analytics report of the website's performance. Some of the data that are collected include the number of visitors, their source, and the pages they visit anonymously.
_hjAbsoluteSessionInProgress	30 minutes	Hotjar sets this cookie to detect the first pageview session of a user. This is a True/False flag set by the cookie.
_hjFirstSeen	30 minutes	Hotjar sets this cookie to identify a new user’s first session. It stores a true/false value, indicating whether it was the first time Hotjar saw this user.
_hjid	1 year	This is a Hotjar cookie that is set when the customer first lands on a page using the Hotjar script.
_hjIncludedInPageviewSample	2 minutes	Hotjar sets this cookie to know whether a user is included in the data sampling defined by the site's pageview limit.
_hjIncludedInSessionSample	2 minutes	Hotjar sets this cookie to know whether a user is included in the data sampling defined by the site's daily session limit.
_omappvp	11 years	The _omappvp cookie is set by OptinMonster to distinguish new and returning users and is used in conjunction with _omappvs cookie.
_omappvs	20 minutes	The _omappvs cookie set by OptinMonster, used in conjunction with the _omappvp cookies, is used to determine if the visitor has visited the website before, or if it is a new visitor.
_uetsid	1 day	This cookies are used to collect analytical information about how visitors use the website. This information is used to compile report and improve site.

Cookie	Duration	Description
anj	3 months	AppNexus sets the anj cookie that contains data stating whether a cookie ID is synced with partners.
bscookie	2 years	This cookie is a browser ID cookie set by Linked share Buttons and ad tags.
fr	3 months	Facebook sets this cookie to show relevant advertisements to users by tracking user behaviour across the web, on sites that have Facebook pixel or Facebook social plugin.
IDE	1 year 24 days	Google DoubleClick IDE cookies are used to store information about how the user uses the website to present them with relevant ads and according to the user profile.
MUID	1 year 24 days	Bing sets this cookie to recognize unique web browsers visiting Microsoft sites. This cookie is used for advertising, site analytics, and other operations.
personalization_id	2 years	Twitter sets this cookie to integrate and share features for social media and also store information about how the user uses the website, for tracking and targeting.
sa-user-id	1 year	StackAdapt sets this cookie as a Random Identifier for user identification, to display relevant advertisements.
sa-user-id-v2	1 year	StackAdapt sets this cookie as a Random Identifier for user identification, to display relevant advertisements.
test_cookie	15 minutes	The test_cookie is set by doubleclick.net and is used to determine if the user's browser supports cookies.
uuid2	3 months	The uuid2 cookie is set by AppNexus and records information that helps in differentiating between devices and browsers. This information is used to pick out ads delivered by the platform and assess the ad performance and its attribute payment.
VISITOR_INFO1_LIVE	5 months 27 days	A cookie set by YouTube to measure bandwidth that determines whether the user gets the new or old player interface.
YSC	session	YSC cookie is set by Youtube and is used to track the views of embedded videos on Youtube pages.
yt-remote-connected-devices	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.
yt-remote-device-id	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.
yt.innertube::nextId	never	This cookie, set by YouTube, registers a unique ID to store data on what videos from YouTube the user has seen.
yt.innertube::requests	never	This cookie, set by YouTube, registers a unique ID to store data on what videos from YouTube the user has seen.
_fbp	3 months	This cookie is set by Facebook to display advertisements when either on Facebook or on a digital platform powered by Facebook advertising, after visiting the website.
_uetvid	1 year 24 days	This cookie is set by Bing to store and track visits across websites.

How To Choose An Incident Management System

What is an incident management platform?

Who is responsible for maintaining a physical security incident management software system?

What features & benefits should I look for in incident management software?

Efficiency and ease of use

Flexibility, adaptability, & scalability

Data segregation & application security

Integrations & mobile solutions

How do I choose the best incident management platform for my organization?

Company authority

Partnerships

Data migration

Support & resources

What makes Resolver’s Incident Management Software stand out?

Discover Resolver's Software

Incident Management Software

Enterprise Risk Management Software

Regulatory Compliance

Data segregation & application security

Data migration