This policy instrument defines the Government of Alberta’s (GoA) requirements for detecting and responding to cybersecurity incidents and events. This includes preparation, identification, containment, eradication, recovery and incident follow-up.