
There are two common approaches to incident response: qualitative and quantitative. Each approach has its pros and cons. Meanwhile, an enterprise’s decision to take a qualitative or quantitative approach to incident response could have far-flung effects on the business, its employees and its customers. So which is better: a qualitative or quantitative approach to incident response? To answer this question, let’s take a closer look at each incident response approach. Qualitative Approach to Incident Response As the name indicates, a “qualitative” approach to incident response relies on data quality. It requires an enterprise to perform interviews, collect questionnaires and conduct other research to understand the qualities or characteristics of its incident response efforts. For example, let’s consider how an enterprise that takes a qualitative approach to incident response would handle a network outage. A network outage likely will affect an enterprise and its key stakeholders. Furthermore, failure to quickly address....