The European Network and Information Security Agency (ENISA) has issued a practical information and guidelines for the management of network and information security incidents by CERTs.
The good practice guide for incident management focuses on the incident handling process. This involves the detection and registration of incidents, followed by so called 'triage' (classifying, prioritizing and assigning incidents), incident resolution, closing and post-analysis.
The guide will help establishing and building Security Incident Response capability
Good Practice Guide for Incident Management