Incident management

1- Does Incident Log file contain a list of security incidents or is it an empty template?

Answer: The incident log template contains one example in the document itself and several comments with explanations and examples for each field. To see a preview of the Incident log, please access this link : https://advisera.com/27001academy/documentation/incident-log/

2- incident Management Procedure a ready template which I can edit to have the policy regarding our own company?

Answer: The Incident Management Procedure is a document that is already 90% completed, and you only need to adapt to your company's needs. . Comments in the template shows which fields can be changed to adapt the document to your needs. To see how it looks like, please access this link: https://advisera.com/27001academy/documentation/incident-management-procedure/

3 - And also it would be great if you could share other training resources specific to A.16 Information security incident management, with me.

Answer: For resources about incident management, please see:
- How to handle incidents according to ISO 27001 A.16 https://advisera.com/27001academy/blog/2015/10/26/how-to-handle-incidents-according-to-iso-27001-a-16/
- Using ITIL to implement ISO 27001 incident management https://advisera.com/27001academy/blog/2015/11/10/using-itil-to-implement-iso-27001-incident-management/t/

This material will also help you regarding incident management:
- ISO 27001 Annex A Controls in Plain English https://advisera.com/books/iso-27001-annex-controls-plain-english/