# Incident Severity Model

## Severity Levels
- `SEV-1`: Critical outage / security incident / financial integrity risk.
- `SEV-2`: Major degradation affecting key workflows.
- `SEV-3`: Partial degradation or non-critical feature impact.
- `SEV-4`: Minor issue with workaround.

## Response Targets
- SEV-1: immediate response, continuous war-room.
- SEV-2: rapid response during on-call window.
- SEV-3/4: queued triage with SLA targets.

## Escalation
- SEV-1/2 require platform + security + product visibility.
- SEV-1 requires executive/stakeholder communication cadence.

## Closure Requirements
- Incident timeline
- root-cause analysis
- corrective and preventive actions
- owner and due dates