Incident management process for web application

Our company is engaged in the development, support and maintenance of sites of any complexity. From simple one-page sites to large-scale cluster systems built on micro services. Experience of developers is confirmed by certificates from vendors.
8+Years of work900+Completed projects100+In house employees19+Partners
Development and maintenance of all types of websites:
Informational websites or web applications
Business card websites, landing pages, corporate websites, online catalogs, quizzes, promo websites, blogs, news resources, informational portals, forums, aggregators
E-commerce websites or web applications
Online stores, B2B portals, marketplaces, online exchanges, cashback websites, exchanges, dropshipping platforms, product parsers
Business process management web applications
CRM systems, ERP systems, corporate portals, production management systems, information parsers
Electronic service websites or web applications
Classified ads platforms, online schools, online cinemas, website builders, portals for electronic services, video hosting platforms, thematic portals

These are just some of the technical types of websites we work with, and each of them can have its own specific features and functionality, as well as be customized to meet the specific needs and goals of the client.

Offered services
Showing 1 of 1 servicesAll 2065 services
Incident management process for web application
Medium
~3-5 business days
FAQ
Our competencies:
Development stages
Latest works
  • image_web-applications_feedme_466_0.webp
    Development of a web application for FEEDME
    1161
  • image_ecommerce_furnoro_435_0.webp
    Development of an online store for the company FURNORO
    1041
  • image_crm_enviok_479_0.webp
    Development of a web application for Enviok
    822
  • image_crm_chasseurs_493_0.webp
    CRM development for Chasseurs
    847
  • image_website-sbh_0.png
    Website development for SBH Partners
    999
  • image_website-_0.png
    Website development for Red Pear
    451
Show more works

Implementing Incident Management Process for Web Application

Incident Management is not a tool, it's a process. Tools (PagerDuty, OpsGenie, Jira) without process are just noise sources. Process without tools is messenger chaos. Together they enable predictable team behavior during outage.

Incident Definition and Priorities

Not every error is an incident. Incident is unplanned service quality violation affecting users.

Severity Criteria RTO Example
SEV1 Service completely unavailable 30 min Site returns 503 for all
SEV2 Critical function degraded 2 hours Payment system not working
SEV3 Non-critical function broken 8 hours Slow report loading
SEV4 Minor issue 24+ hours Typo on page

Incident Roles

Incident Commander (IC). Coordinates response, makes decisions, doesn't debug code. One per incident.

Technical Lead. Directs investigation and resolution. Multiple possible on wide incident.

Communications Lead. Updates Status Page, answers business questions, writes Slack incident channel updates.

Role separation is critical: one person can't simultaneously debug and answer CEO questions.

Incident Lifecycle

Detection → Triage → Escalation → Response → Resolution → Post-mortem

Detection: Alertmanager / PagerDuty detects anomaly and notifies on-call.

Triage (5-10 minutes): On-call evaluates severity, creates incident ticket, opens Slack channel #incident-YYYY-MM-DD-brief-description.

Escalation: For SEV1-2 — immediate IC and additional engineer involvement. On-call rotation determines who's on duty.

Response: Work conducted in dedicated Slack channel. Updates every 20-30 minutes. All significant actions logged in incident thread (who, what, when).

Resolution: Service restored, users notified, incident closed.

Post-mortem: Within 48 hours.

Tooling

Slack/Teams integration. Bot automatically creates incident channel, invites participants, posts incident ticket template.

Runbooks. Each alert references specific runbook in Confluence/Notion: what to do on this error, what commands to run, who to call.

Shared terminal (tmux/screen). For remote work — tmate or Teleport for shared console access without credential sharing.

Example Slack Bot for Incident Creation

# /incident create sev=1 "Payment system down"
@app.command("/incident")
def create_incident(ack, command, client):
    ack()
    severity = parse_severity(command["text"])
    title = parse_title(command["text"])

    channel = client.conversations_create(
        name=f"incident-{date.today()}-{slugify(title)}"
    )

    client.chat_postMessage(
        channel=channel["channel"]["id"],
        text=INCIDENT_TEMPLATE.format(
            severity=severity,
            title=title,
            commander=command["user_id"],
            started_at=datetime.now().isoformat()
        )
    )

    # Update Status Page
    update_status_page(severity, title)

    # PagerDuty: create incident
    pagerduty.create_incident(severity, title)

Communication During Incident

Inside team — technical details in incident channel. For business — simple updates every 30 minutes: "Problem detected, working on fix. Next update in 30 minutes." For users — Status Page.

Never answer "soon fixed" without time estimates. Better "expect recovery in 2 hours" with later refinement.

Process Metrics

  • MTTD (Mean Time to Detect) — average incident detection time
  • MTTA (Mean Time to Acknowledge) — time from alert to work acceptance
  • MTTR (Mean Time to Resolve) — average resolution time
  • Incident Frequency — incident frequency by severity

Implementation Timeline

  • Define process + roles + severity matrix — 2-3 days
  • Setup PagerDuty/OpsGenie + on-call rotation — 1-2 days
  • Slack integration + templates — 1-2 days
  • Runbooks for top-10 alerts — 3-5 days
  • Team training + test drill — 1 day