Lessons Learned
A part of the security incident response process in which an organization analyzes what went wrong, what went well, and what changes should be made going forward.
Resources
NIST SP 800-61, Rev. 2, Computer Security Incident Handling Guide