The incident response team (IRT) is a defined group of people responsible for detecting, analyzing, and resolving security incidents. It typically includes IT security specialists, system administrators, legal counsel, and communications staff. The team follows a documented incident response plan with clearly defined phases: detection, containment, eradication, recovery, and lessons learned. In your ISMS, name the members and ensure that deputy arrangements exist. Regular exercises (tabletop exercises) keep the team operational.