Incident Management · ISO 27001

Track Every Incident. Resolve It on Time. Prove Compliance.

Capture incidents the moment they happen, drive them through a five-stage workflow with built-in SLA targets, and gate closure behind root cause and corrective actions. Designed to align with ISO 27001 incident-management requirements.

ISO 27001 Aligned
4h Critical SLA
100% Audit Trail
Fully White Labelled Your brand, your platform. Customers never see our logo or links.
100% Branding with Professional Plan
Core Capabilities

From Report to Resolution with Compliance Built In

An incident-management workflow that's structured enough to satisfy auditors and quick enough that your team will actually use it.

Five-Stage Workflow

Reported → Triaged → Investigating → Resolved → Closed. Every transition is timestamped against the user who made it.

  • Five clear states
  • Auto-generated incident numbers
  • Assignment & escalation
  • Reopen if needed

Severity-Driven SLAs

Critical, High, Medium, Low, each with its own response target. Overdue incidents are flagged automatically so nothing slips through.

  • Critical: 4 hours
  • High: 8 hours
  • Medium: 24 hours
  • Low: 72 hours

Mandatory Documentation

Closure is gated behind root cause and corrective actions. Auditors get a paper trail, your team gets lessons learned that stick.

  • Root cause required
  • Corrective actions required
  • Lessons learned (optional)
  • Closure-gate enforcement
Severity & SLAs

Pick a Severity. The Clock Starts.

The moment an incident is logged at Critical, the response clock is ticking. Auditors love the consistency; your team loves that the urgency is visible without anyone having to shout.

  • Critical (4h) System down, security breach, regulatory exposure. Drop everything.
  • High (8h) Significant impact on a major function. Same-business-day response.
  • Medium (24h) Localised disruption, workaround possible. Resolved within a day.
Active Incidents
Critical
INC-2026-0042
Production DB outage, payments failing
Security Due in 1h 12m
High
INC-2026-0041
Phishing attempt reported by 3 users
Security Due in 5h 24m
Medium
INC-2026-0038
VPN intermittent for remote staff
IT Infrastructure Due in 18h
Low
INC-2026-0033
Office printer error message
Health & Safety Due in 2d 6h
Five-Stage Workflow

A Workflow That Won't Let You Skip Steps

Reported, Triaged, Investigating, Resolved, Closed. You can't close an incident without a documented root cause and corrective actions, exactly what auditors expect to see.

  • Reported Anyone in the workspace can raise an incident, gets an auto-numbered ID and the SLA clock starts.
  • Triaged & Investigated Severity, category, impact, and assignee get set. The investigation timeline records every comment and update.
  • Resolved (Gated) Closure is blocked until root cause and corrective actions are filled in. Lessons learned are optional but encouraged.
INC-2026-0042
Reported
14:02
Triaged
14:18
Investigating
now
Resolved
-
Closed
-
Closure gated
Root cause and corrective actions required before this incident can be closed.
ISO 27001, Annex A.16

An Auditor-Ready Compliance Report

Mark an incident as a security incident and it joins the ISO 27001 compliance report, severity, response time, root cause, corrective actions, full timeline. Hand it to the auditor without spending a week pulling spreadsheets.

  • Security-Incident Flag One toggle on the incident routes it into the ISO 27001 compliance report.
  • SLA Performance Response and resolution times tracked against severity targets, the report shows your hit rate.
  • Annex A.16 Alignment Reporting, response, learning-from-incidents, and evidence collection, the controls auditors actually check.
ISO 27001 Compliance Report, Q2 2026
ISO 27001, Information Security Incidents
Period: Apr, Jun 2026
14 Total
12 Resolved
93% SLA Met
INC-2026-0042 Critical Root cause documented
INC-2026-0041 High Root cause documented
INC-2026-0033 Low Root cause documented
All-in-One Platform

Everything Your Business Needs

One subscription. One login. Zero limitations. Replace your entire software stack with a platform built to scale with you.

Assets

Track and manage company assets, equipment, and inventory.

Explore Assets

Blueprints

Automate workflows with visual event-driven blueprints and triggers.

Explore Blueprints

Brainstorm

A freeform visual canvas for ideas and concepts: idea cards, sticky notes, mood board images, group frames, and ideas generated by AI.

Explore Brainstorm

Business Roadmap

Plan and visualise business strategy with timeline and milestone tracking.

Explore Business Roadmap

Calendar

Shared calendars, event scheduling, and meeting management.

Explore Calendar

Chat

Real-time team messaging with channels, direct messages, and file sharing.

Explore Chat

Communications

Send newsletters, announcements, and bulk communications to contacts.

Explore Communications

Content

Create and manage rich content with a powerful CMS and editor.

Explore Content

Documents

Document storage, file sharing, version control, and folder organisation.

Explore Documents

Forecasts

tooltips.forecasts

Explore Forecasts

Forms

Form builder with submissions, conditional logic, and integrations.

Explore Forms

HR

Human resources management with employee records, time off, and organisational tools.

Explore HR

Help Desk

Customer support ticketing system with SLA tracking and knowledge base.

Explore Help Desk

Incident Management

Incident management with severity-based SLAs, root-cause documentation, full audit trail, and security incident flagging. Aligned with ISO 27001 Annex A.16.

Explore Incident Management

Lead Enrichment

tooltips.lead_enrichment

Explore Lead Enrichment

Media Library

Centralised media management with tagging, search, and organisation.

Explore Media Library

Organisation Chart

Visualise company structure with interactive org charts and reporting lines.

Explore Organisation Chart

Password Vault

Securely store and share passwords with team access controls.

Explore Password Vault

Permissions & User Groups

User groups, role-based permissions, and granular access control to keep your workspace secure.

Explore Permissions & User Groups

Project Management

Project management with sprints, backlogs, task boards, and team collaboration.

Explore Project Management

Recruitment

Full applicant tracking system with job postings, candidate management, and hiring workflows.

Explore Recruitment

Reports

Generate insights with customisable reports and analytics dashboards.

Explore Reports

Sales

Sales pipeline, deals tracking, quotes, and CRM functionality.

Explore Sales

Time Tracking

Log work hours, track billable time, and generate timesheets.

Explore Time Tracking

Timesheets

tooltips.timesheets

Explore Timesheets

Ready to get started?

Discover how Wizard Application can streamline your team's work. Start your free trial today.

Start Free Trial View Plans
FAQ

Frequently Asked Questions

The incident-management Feature is designed to align with ISO 27001 Annex A.16 (Information Security Incident Management), severity-driven SLAs, mandatory root-cause and corrective-action documentation, and a dedicated security-incident report. Certification of your organisation against ISO 27001 still requires an accredited audit, but this Feature produces the evidence auditors expect to see.

Critical 4 hours, High 8 hours, Medium 24 hours, Low 72 hours. The clock starts the moment the incident is logged at that severity, and overdue incidents are flagged automatically.

No. Closure is gated behind root cause and corrective actions, exactly what auditors expect to see. Lessons learned is optional but encouraged.

Yes. The eight defaults (IT, Security, Health & Safety, Data Breach, Service Outage, Access Control, Compliance, Other) can be extended with your own categories.