Pdf

A Cloud-Based Incident Response Platform using Machine Learning Alert Triage and Automation

Nwosu John Nwachukwu

Department of Computer Science Federal Polytechnic, Oko Anambra State, Nigeria
Phone Number: 08035902385
Email: drnwosu2023@gmail.com

ABSTRACT

This study developed a centralized incident response platform that records and organizes all cybersecurity incident details by automating incident detection, classifying incidents according to their types, providing real-time monitoring tools to improve visibility into incident status and their severity, and generating structured reports that support post-incident analysis, and informed decision-making by management of organizations. The methodology used is Design Science Research which involved problem identification, requirement analysis, system design using structured system analysis and design techniques, database design, and iterative software development with testing at each stage to ensure functionality, reliability, and user-friendliness. Data inputs such as incident type, severity level, affected hosts, detection time, and actions taken were captured and processed to allow for automated classification and tracking of resolution progress. The system was developed using Microsoft Visual Studio 2010 for application interface while Microsoft Access 2013 served as the database for storing and managing incident records. The platform also features dashboards and reporting tools that provide a comprehensive view of all active and past incidents, enabling organizations to assess trends, identify vulnerabilities, and maintain regulatory compliance efficiently. Testing and evaluation of the platform showed improvements in response time, accuracy of incident classification, and ease of access to incident history compared to traditional manual systems. Based on these findings, it is recommended that organizations adopt centralized and automated incident response solutions to enhance cybersecurity resilience, reduce human error, ensure faster mitigation of threats, and support effective governance and continuous improvement in security operations.

Keywords: Cloud-Based Incident, Machine Learning, Alert Triage and Automation

CITE AS: Nwosu John Nwachukwu (2026). A Cloud-Based Incident Response Platform using Machine Learning Alert Triage and Automation. INOSR Scientific Research 13(1):12-20. https://doi.org/10.59298/INOSRSR/2026/122011