Your CTO has asked you to implement a postmortem policy on every incident for internal use. You want to define what a good postmortem is to ensure that the policy is successful at your company. What should you do? (Choose two.)
A.
Ensure that all postmortems include what caused the incident, identify the person or team responsible for causing the incident, and how to prevent a future occurrence of the incident.
B.
Ensure that all postmortems include what caused the incident, how the incident could have been worse, and how to prevent a future occurrence of the incident.
C.
Ensure that all postmortems include the severity of the incident, how to prevent a future occurrence of the incident, and what caused the incident without naming internal system components.
D.
Ensure that all postmortems include how the incident was resolved and what caused the incident without naming customer information.
E.
Ensure that all postmortems include all incident participants in postmortem authoring and share postmortems as widely as possible.
Me too
E -> include all incident participants in postmortem authoring, no much sense, the incident commander is the author of the postmortem
A -> identify the person or team responsible for causing the incident
C -> without naming internal system components, the postmortem has to be focus on the processes/components
Option B is incorrect because it states that the postmortem should include how the incident could have been worse.The focus of the postmortem should be on identifying the root cause of the incident and developing recommendations for preventing future occurrences.
Choose C & E
Option C emphasizes including the severity of the incident, prevention strategies for future occurrences, and an analysis of what caused the incident without necessarily naming internal system components. This approach ensures a balance between transparency and security, providing valuable insights without exposing sensitive internal details.
Option E, which advocates involving all incident participants in postmortem authoring and sharing postmortems widely, promotes a collaborative and inclusive culture. Involving all relevant stakeholders ensures a comprehensive understanding of the incident, and sharing postmortems widely fosters transparency, enabling the organization to learn from incidents collectively.
Together, these practices contribute to a successful postmortem policy that promotes continuous improvement and a culture of learning from incidents.
A. We don't blame
B. I can't imagine a postmortem with information on how the incident could have been worse.
C. Correct answer.
D. It's nearly the same as C but doesn't include recommendations for the future, so I go with C.
E. Correct, include all participants of the incident in authoring postmortem to not miss something important.
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
activist
Highly Voted 1 year, 6 months agoFeliphus
1 year, 4 months agowinston9
11 months agomshafa
Highly Voted 1 year, 6 months agosurfer111
Most Recent 10 months, 1 week agoalpha_canary
1 year, 2 months agoxhilmi
1 year, 4 months agonqthien041292
1 year, 5 months agobhunias
1 year, 5 months agopharao89
1 year, 5 months agoTereRolon
1 year, 5 months agolelele2023
1 year, 6 months agokhoukha
1 year, 6 months agoJason_Cloud_at
1 year, 6 months ago