Merge pull request #9726 from harness/incident-response

IR-599: Initial Incident Response Documentation Publish

Author: ryantaylor16

docs/incident-response/ai-ir-agent/ai-agent.md

@@ -0,0 +1,111 @@
+---
+title: AI Incident Response Agent
+description: Learn about the AI Incident Response Agent in Harness IR and how it helps document incidents through Slack and Zoom.
+sidebar_label: AI Agent
+sidebar_position: 2
+---
+
+# AI Incident Response Agent
+
+:::note Future Enhancements
+The AI Agent is part of Harness IR's intelligent incident management platform. While current features focus on incident documentation and communication analysis, additional AI-powered capabilities are in development.
+:::
+
+The AI Incident Response Agent automatically captures and organizes incident response activities by monitoring Slack channels and Zoom meetings, ensuring teams maintain comprehensive records throughout the incident lifecycle.
+
+## Overview
+
+The AI Agent enhances incident response by:
+- Monitoring and analyzing Slack messages
+- Joining and summarizing Zoom meetings
+- Creating detailed timelines
+- Tracking action items
+- Maintaining incident context
+
+## Communication Integrations
+
+### Slack Integration
+The AI Agent monitors incident channels to:
+- Capture team discussions
+- Record key decisions
+- Track action items
+- Build event timelines
+- Save important updates
+
+### Zoom Integration
+The AI Agent joins incident meetings to:
+- Monitor team discussions
+- Create meeting summaries
+- Document decisions
+- Track action items
+- Save key points
+
+### Microsoft Teams Integration
+The AI Agent joins incident meetings to:
+- Monitor team discussions
+- Create meeting summaries
+- Document decisions
+- Track action items
+- Save key points
+
+## Documentation Features
+
+### Event Capture
+The AI Agent records:
+- Slack conversations
+- Zoom meeting content
+- Team decisions
+- Action items
+- Status updates
+- Follow-up tasks
+
+### Timeline Generation
+
+The AI Agent creates timelines from communications:
+
+**Status Update** (Slack)  
+"Database failover completed successfully at 14:23 UTC"
+
+**Meeting Summary** (Zoom)  
+"Team discussed performance issues and decided to roll back"
+
+**Action Item** (Slack)  
+"TODO: Update monitoring thresholds for database connection pool"
+
+## Best Practices
+
+### Channel Setup
+- Create dedicated incident channels
+- Add AI agent to incident channels
+- Use consistent channel naming
+- Keep discussions focused
+
+### Meeting Setup
+- Add AI agent to Zoom meetings
+- Use descriptive meeting titles
+- Speak clearly
+- Highlight key decisions
+
+### Communication
+- Mark key decisions clearly
+- Flag action items explicitly
+- Post clear status updates
+- Use structured messages
+- Follow channel conventions
+
+### Documentation
+- Review recorded events
+- Check timeline accuracy
+- Add context if needed
+- Fix any missing items
+- Save important findings
+
+## Next Steps
+
+### Documentation
+- [Incident Management](/docs/incident-response/incidents/)
+- [Configure Runbook Integrations](/docs/category/integration-guides)
+
+### Related Topics
+- [Slack Integration](/docs/incident-response/runbooks/integrations/slack)
+- [Zoom Integration](/docs/incident-response/runbooks/integrations/zoom)

docs/incident-response/alerts/_category_.json

@@ -0,0 +1,8 @@
+{
+  "label": "Alert Management",
+  "position": 3,
+  "link": {
+    "type": "generated-index",
+    "description": "Learn how to configure and manage alerts in Harness Incident Response. Set up webhooks, integrate with monitoring tools, and customize alert handling to streamline your incident response process."
+  }
+}

docs/incident-response/alerts/alert-rules.md

@@ -0,0 +1,83 @@
+---
+title: Configure Alert Rules
+description: Learn how to configure alert rules in Harness Incident Response to route, filter, and enrich incoming alerts.
+sidebar_label: Alert Rules
+sidebar_position: 4
+---
+
+# Alert Rules
+
+Alert Rules define how incoming alerts are processed and when incidents should be created. This guide walks you through configuring alert rules in Harness IR.
+
+## Overview
+
+Alert rules help you:
+- Create incidents from incoming alerts
+- Map alert data to incident fields
+- Set up automated responses
+- Configure Harness IR on-call notifications (Coming in Q2)
+- Associate relevant runbooks
+
+## Accessing Alert Rules
+
+1. From the main menu, select **Alerts**
+2. Click **Configure Alert Rules**
+3. Select the integration you want to create rules for (e.g., Datadog, PagerDuty, etc.)
+
+## Configuration Steps
+
+### Step 1: Define Alert Conditions
+
+Use the visual condition builder to specify when incidents should be created. You can create conditions based on any field from your alert payload, such as:
+- Alert severity or priority
+- Service or application name
+- Environment
+- Alert message content
+- Custom alert fields
+
+The condition builder allows you to combine multiple conditions using AND/OR operators.
+
+### Step 2: Map Alert Fields to Incident Fields
+
+The field mapper shows you available fields from your alert payload that can be mapped to incident fields:
+
+Standard incident fields include:
+- Title
+- Description
+- Severity
+- Priority
+- Service
+- Environment
+- Custom fields
+
+### Step 3: Configure On-Call Notifications (Coming in Q2)
+
+:::note
+The Harness IR on-call module will be available in Q2. This will enable native on-call management within Harness IR.
+:::
+
+When the Harness IR on-call module becomes available, you will be able to configure:
+- Which teams should be notified
+- Escalation policies to use
+- Response time expectations
+- Notification channels
+
+### Step 4: Associate Runbooks
+
+Connect relevant runbooks to your alert rule. These runbooks can be:
+- Automatically triggered when an incident is created
+- Suggested to responders during incident resolution
+- Used as reference documentation for incident response
+
+## Best Practices
+
+- Create specific rules for different types of alerts
+- Use clear, descriptive names for your rules
+- Test rules with sample alerts before activating
+- Review and update rules as your services evolve
+- Document your rule configurations for team reference
+
+## Next Steps
+
+- [Configure Webhooks](./webhooks.md)
+- [Create Runbooks](../runbooks/create-runbook.md)

docs/incident-response/alerts/alerts.md

@@ -0,0 +1,94 @@
+---
+title: Alerts Overview
+description: Learn how to manage and configure alerts in Harness Incident Response
+sidebar_label: Overview
+sidebar_position: 1
+---
+
+# Alert Management in Harness IR
+
+Learn how to effectively manage and configure alerts in Harness Incident Response.
+
+## Overview
+
+Harness IR provides flexible alert management capabilities that help you:
+- Receive alerts from any monitoring system
+- Configure alert routing and escalation
+- Customize alert handling based on severity and source
+- Automate responses using runbooks
+
+## Alert Sources
+
+### Native Integrations
+Harness IR supports direct integrations with popular monitoring tools:
+- Datadog
+- Grafana
+- New Relic
+- Prometheus
+- AWS CloudWatch
+- Azure Monitor
+- Google Cloud Monitoring
+
+### Webhooks
+Our [webhook integration](./webhooks.md) supports any monitoring system or custom application that can send HTTP requests. Common use cases include:
+- Custom monitoring solutions
+- Internal applications
+- Legacy monitoring systems
+- Third-party services
+
+## Alert Configuration
+
+### Alert Routing
+Configure where alerts are sent based on:
+- Service
+- Environment
+- Team
+- Severity
+- Custom fields
+
+### Alert Enrichment
+Enhance alerts with additional context:
+- Service metadata
+- Environment details
+- Team information
+- Historical data
+- Related incidents
+
+### Alert Actions
+Define automated actions when alerts are received:
+- Create incidents
+- Trigger runbooks
+- Send notifications
+- Update dashboards
+- Create tickets
+
+## Best Practices
+
+### Alert Design
+- Use clear, actionable alert names
+- Include relevant context in alert descriptions
+- Set appropriate thresholds
+- Configure proper severity levels
+
+### Alert Management
+- Document alert patterns
+- Review alert frequency
+- Update alert rules regularly
+- Clean up stale alerts
+
+### Alert Response
+- Define clear ownership
+- Set up escalation paths
+- Document response procedures
+- Configure automated responses
+
+## Next Steps
+
+### Documentation
+- [Configure Webhooks](./webhooks.md)
+- [Alert Integrations](./integrations.md)
+- [Configure Alert Rules](./alert-rules.md)
+
+### Related Topics
+- [Create a Runbook](../runbooks/create-runbook.md)
+- [Configure Fields](../runbooks/configure-incident-fields.md)