A Guide to Understanding the ICS | Best Practice Guide (2024)

Guide to Understanding the ICS(Incident Command System)

Incident Command System: the essentials

  • Offers a standardized approach to the command, control, and coordination of emergency response, across the U.S.
  • Codifies emergency management best practices for fire and non-fire agencies alike
  • Can be applied to non-emergency response scenarios (planned events: concerts, festivals, trainings, etc.) as well as business-as-usual operations
  • Key feature of the U.S. National Incident Management System (NIMS)

Explaining the Incident Command System

ICS: the history

Over the last half century, one of the key developments in emergency management has been the creation of the Incident Command System (ICS), an operational incident management structure that provides a standardized approach to the command, control, and coordination of emergency response for organizations across the U.S.

The system’s longstanding success-it’s been in practice for over 40 years-stems directly from its genesis, created as it was, in the aftermath of a string of catastrophic wildfires that struck California in the 1970s. Eventually, fire suppression agencies were able to tame the fires, but only after the loss of tens of lives, hundreds of homes, and hundreds of thousands of acresi.

The response itself was deemed suboptimal. But when researchers and practitioners went back to review the missteps, they discovered something curious. The flaw in the response hadn’t been too few resources, as is often the case, nor had it been poor tactics in the field. In fact, the major shortcoming was poor management and synchronization. Researchers assembled a list of the operation’s primary limitations:

  • Lack of common organization
  • Poor on-scene and inter-agency communications
  • Inadequate joint planning
  • Lack of valid and timely intelligence
  • Inadequate resource management
  • Narrow prediction capabilityii

Going forward, response agencies would have to cooperate, communicate, and coordinate better. But how? There didn’t yet exist a standardized incident management framework-a scalable structure that would help multiple response organizations work together, as the incident dictated.

Enter the Incident Command System, developed shortly thereafter as an inter-operable incident management framework for fire suppression agencies in California. And though ICS first adopters were localized to fire response, it didn’t take too long for non-fire organizations to begin using the system as well. As we’ll see, that adoptability wasn’t sheer happenstance either. Flexibility was a matter of intentional design.

What ICS does: core concepts, principles, and benefits

At its core, ICS is meant to enable the effective and efficient management of incidents, irrespective of jurisdiction, kind, complexity, or size. The system codifies emergency management best practices into a unified approach to incident response, integrating a combination of facilities, equipment, personnel, procedures, and communications, which then all operate under a common organizational structure.

One of the reasons ICS is so successful is because it offers a common incident management vocabulary for all organizations involved in incident response. As a result, personnel from multiple agencies can communicate using the same language, rather than their own agency-specific terminology. The system thus lets incident managers set up a unified, centrally authorized, emergency command structure quickly, without fear of miscommunication in the field or in the incident command centeriii.

Nor are flexibility and standardization the system’s sole attributes. ICS creators developed the system with 14 core features in mind. Those features fall into the following types: standardization, command, planning structure, facilities and resources, communications and information management, as well as professionalism. The features are described as:

TypeFeaturePurpose
StandardizationCommon terminologyHelps define organizational functions, incidents facilities, resource descriptions, and position titles.
Establishment and Transfer of commandCommand must be clearly established from the outset of the incident. Command must be transferred only with a briefing that captures all essential information for continuing safe and effective operations.
CommandEstablishment and Transfer of commandCommand must be clearly established from the outset of the incident. Command must be transferred only with a briefing that captures all essential information for continuing safe and effective operations.
Unified commandEnables agencies with different legal, geographic, and functional authorities and responsibilities to work together effectively under individual agency authority, responsibility, or accountability.
Management by objectivesIncludes establishing overarching objectives; developing strategies based on incident objectives; developing and issuing assignments, plans, procedures, and protocols; establishing specific, measurable objectives for various incident management functional activities and directing efforts to attain them, in support of defined strategies; and documenting results to measure performance and facilitate corrective action.
Planning and organizational structureModular organizationThe organizational structure is based on the size and complexity of the incident, as well as the specifics of the hazard environment created by the incident.
Incident action planningOffers a coherent means of communicating the overall incident objectives in the context of both operational and support activities.
Manageable span of controlSpan of control of any one individual should range from three to seven subordinates.
Incident locations and facilitiesOperational support facilities will be established in the vicinity of an incident, e.g. incident command posts, bases, camps, staging areas, mass casualty triage areas, etc.
Facilities and resourcesComprehensive resource managementStipulates accurate, up-to-date accounting of resource use.
Integrated communicationsDevelop and use a common (incident) communications plan and interoperable communications, processes, and structures.
Communications and Information ManagementInformation and Intelligence managementEstablish a process for gathering, analyzing, sharing, and managing incident-related information and intelligence.
Accountability

Effective accountability is considered essential during incident operations. As such, the following principles must be adhered to:

• Check-in, • Incident Action Plan, • Unity of command, • Personal responsibility,
• Span of control, • Real-time resource tracking

ProfessionalismDispatch/deploymentPersonnel and equipment should only respond when requested or when dispatched by
the appropriate authority

Source: Federal Emergency Management Agency

How ICS can bolster your response efforts

So why exactly should you adopt ICS, especially when many emergency incidents never cross jurisdictional boundaries and don’t necessitate a multi-agency response? The short answer is many others do. What’s more, despite first appearances, small to medium-scale emergencies often are beyond the capacity of one single agency to tackle alone; whereas multiple agencies working efficiently in tandem can handle the situation with relative ease. A FEMA position paper puts this best: “There will be instances in which successful domestic incident management operations depend on the involvement of emergency responders from multiple jurisdictions, as well as personnel and equipment from other states and the federal government. These instances require effective and efficient coordination across a broad spectrum of organizations and activities”iv.

And that’s when ICS provides its greatest value. The system facilitates the easy mobilization of outside resources, designed as it is so that everyone knows what’s going on. But the system doesn’t just come in handy during an incident. It also helps organizations unite, plan, and simulate their responses before the incident breaks out in the first place.

ICS also provides a rich stockpile of best practices. Having experienced some of the ruinous effects of inadequate joint planning up close, ICS creators took the imperatives of coordinated planning very much to heart. And that’s why, ICS, as it stands today, offers a pretty thorough process for incident planning, culminating in the development of the Incident Action Plan (IAP).

The IAP documents incident goals, objectives, and strategies, as well as contains tactics and vital information for managers and responders. Far from a static document, the IAP is meant to evolve as incident parameters change and facts on the ground shift, thereby giving agencies an important means by which to disseminate critical information before, during, and after the incidentv.

ICS and the National Incident Management System (NIMS)

Pretty much as soon it was developed, ICS surged in popularity, adopted far beyond the fire suppression context and replicated across the globe (see, for example: the Austral-asian Inter-service Incident Management System --- link to the guide). No doubt, one of the most important milestones in this trajectory was the decision to include ICS as a key feature of the U.S. National Incident Management System (NIMS), when that system was created in the 2000s. In fact, we might say that that single decision helped spur greater (non-fire) adoption of ICS than anything else.

Put out by the U.S. Department of Homeland Security, NIMS lays out a standardized approach for tackling all-hazard situations, offering a consistent nationwide approach for federal, state, tribal, and local governments to use when working together to prepare for, prevent, respond to, and recover from domestic incidents of any cause, size, or complexity.

Like ICS, NIMS incorporates existing best practices after all, it was developed after close collaboration between state and local government officials and representatives from a wide range of public safety organizations-into a comprehensive national approach to incident management. The approach taken by NIMS is based on a few core concepts, not too dissimilar to ICS’:

  • A consistent method for identifying, acquiring, allocating, and tracking resources
  • Standardized systems for classifying resources to improve the effectiveness of mutual aid assistance agreements
  • Coordination to facilitate the integration of resources for mutual benefit
  • Use of all available resources from all levels of government, nongovernmental organizations, and the private sector, where appropriate
  • The integration of communications and information management elements into organizations, processes, technologies, and decision support
  • The use of credentialing criteria that ensures consistent training, licensing, and certification standards

NIMS essentially boils down to proper planning before an incident, during which time organizations should inventory and categorize their resources by kind and type, including size, capacity, capability, and other characteristics.

Source: U.S. Department of Homeland Security

A final word: inter-agency coordination is hard. Poor communication, a lack of shared situational awareness, and a failure to grasp the structures of peer organizations too often doom incident response. By design, ICS was set up to solve each of those challenges and set agencies up for success.

As an additional benefit, the system also provides logistical and administrative support for operational staff and contributes to lower overall operational costs, as fewer efforts get duplicated. Lastly, communication, coordination, and accountability being prerequisites for efficient business-as-usual processes, organizations have also found great success using ICS to effectively allocate their BAU resources.

Appendix: ICS functional areas, organizational structure, and incident team

ICS establishes a full Incident Management team grouped around five functional areas, Command, Operations, Logistics, Planning, and Administration/Finance (depicted below):

A Guide to Understanding the ICS | Best Practice Guide (4)

ICS organizational structure

A Guide to Understanding the ICS | Best Practice Guide (5)

ICS key roles and responsibilities

RoleResponsibilities
Incident Commander
  • In control of the overall management of the incident
  • Assessing the situation and obtaining a briefing from the previous Incident Commander, if applicable.
  • Determining the incident objectives and strategy.
  • Establishing the immediate priorities.
  • Establishing an Incident Command Center.
  • Establishing an appropriate organization.
  • Scheduling planning meetings, as required.
  • Authorizing and approving the implementation of an Incident Action Plan.
  • Ensuring that adequate safety measures are in place.
  • Coordinating activity for all command and general staff.
  • Coordinating with key people and officials.
  • Approving requests for additional resources or for the release of resources.
  • Keeping the Policy Group informed of the incident status.
  • Approving the use of auxiliary personnel, as required.
  • Authorizing the release of information to the news media.
  • Ordering the demobilization of the incident when appropriate.
  • Approving all information prior to release.
Public Information Officer
  • Verifies, coordinates, and disseminates accurate, accessible, and timely information on the incident’s cause, size, and current situation, for both internal and external use.
  • Gathering information about the incident from Incident Command Center and the response teams.
  • Gathering information related to the type of incident from professional sources, such as response agencies, technical specialists, and emergency response guidebooks.
  • Verifying the accuracy of the information gathered by consulting with the Incident Commander, Incident Command System (ICS) team, response agencies and technical specialists.
  • Coordinating dissemination of information internally to response teams and related resources.
  • Coordinating dissemination of information externally to key stakeholders, media, and the public.
Safety Officer
  • Identify and mitigate hazardous situations.
  • Ensure safety messages and briefings are made.
  • Exercise emergency authority to stop and prevent unsafe acts.
  • Review the Incident Action Plan for safety implications.
  • Assign assistants qualified to evaluate special hazards
  • Initiate preliminary investigation of accidents within the incident area.
  • Review and approve the Medical Plan.
  • Participate in planning meetings.
Liaison Officer
  • Act as a point of contact for agency representatives.
  • Maintain a list of assisting and cooperating agencies and agency representatives.
  • Assist in setting up and coordinating interagency contacts.
  • Monitor incident operations to identify current or potential interorganizational problems.
  • Participate in planning meetings, providing current resource status, including limitations and capabilities of agency resources.
  • Provide agency-specific demobilization information and requirements.
Operations Controller
  • Managing tactical operations, including:
    – Interacting with the relevant people in the next lower level of the organization, to develop the operations portion of the Incident Action Plan
    – Requesting the resources required to implement the tactics as a part of the Incident Action Plan development.
  • Assisting in developing the operations part of the Incident Action Plan.
  • Supervising the execution of the Incident Action Plan for operations, including:
    – Maintaining close contact with people in subordinate positions.
    – Ensuring safe tactical operations.
  • Requesting additional resources to support tactical operations, if required.
  • Approving the release of resources from their assigned status.
  • Making or approving changes to the Incident Action Plan during the operational period, as required.
  • Maintaining close communications with the Incident Commander.
  • Maintaining the Activity Log.
Planning Controller
  • Collects, evaluates, processes, and disseminates information for use at the incident.
  • Collecting and processing situation information about the incident.
  • Supervising preparation of the Incident Action Plan.
  • Providing input to the Incident Commander in preparing the Incident Action Plan.
  • Reassigning out-of-service personnel already on-site to ICS organizational positions, as appropriate.
  • Establishing information requirements and reporting schedules for the Planning Section units.
  • Determining if specialized resources are required to support the incident.
  • Assembling and disassembling strike teams and task forces not assigned to operations, if requested to do so.
  • Establishing special information collection activities, as required.
  • Assembling information on alternative strategies.
  • Providing periodic predictions on the incident potential.
  • Reporting any significant changes in the incident status.
  • Compiling and displaying incident status information.
  • Overseeing preparation of the Incident Demobilization Plan.
  • Incorporating the Incident Traffic Plan from Ground Support, and other supporting plans into the Incident Action Plan.
  • Maintaining the Activity Log.
Logistics Controller
  • Supporting incident management operations by:
  • Securing and providing personnel, equipment, facilities, resources and services required for incident resolution.
  • Coordinating personnel.
  • Assembling and deploying volunteer teams.
  • Facilitating communication among incident responders.
  • Establishing and overseeing the communications center and activities during the incident.
  • Establishing and maintaining critical incident kits.
  • Coordinating access to and distribution of supplies during the incident.
Finance/Administration Controller
  • Managing all financial aspects of the incident.
  • Providing financial and cost analysis information as requested.
  • Gathering pertinent information from briefings with responsible agencies.
  • Developing an operating plan for the Finance/Administration Section.
  • Fulfilling supply and support needs.
  • Determining the need to set up and operate an incident commissary.
  • Meeting with Assisting and Cooperating Agency Representatives, as required
  • Maintaining daily contact with the organization headquarters on finance and administration matters.
  • Ensuring that all personnel accurately complete and transmit their time records to head office or home agencies, according to policy.
  • Providing financial input to demobilization planning.

Source: U.S. Department of Homeland Security, Federal Emergency Management Agency

Citations

i. For reference; see the Laguna fire of 1970, California’s then-third largest wildfire.

ii. Robert L. Irwin: Disaster Response: Principles of Preparation and Coordination. Available at https://web.archive.org/web/20080423021922/http://orgmail2.coe dmha.org/dr/DisasterResponse.nsf/section/07?opendocument&home=html.

iii. Federal Emergency Management Agency: NIMS and the Incident Command System. Available at https://www.fema.gov/txt/nims/nims_ics_position_paper.txt.

iv. Ibid.

v. U.S. Department of Health & Human Services: Office of the Assistant Secretary for Preparedness and Response: What Is An Incident Action Plan? Available at https://www.phe.gov/Preparedness/planning/mscc/handbook/Pages/appendixc.aspx.

A Guide to Understanding the ICS | Best Practice Guide (6)

A Guide to Understanding the ICS | Best Practice Guide (2024)

FAQs

What are the 5 C's of Incident Command? ›

ICS divides an emergency response into five manageable functions essential for emergency response operations: Command, Operations, Planning, Logistics, and Finance and Administration.

What are the five steps of ICS? ›

The five primary phases are:
  • Analyze the Situation, Including Future Developments.
  • Establish Incident Objectives and Strategy.
  • Develop the Plan.
  • Prepare and Disseminate the Plan.
  • Execute, Evaluate, and Revise the Plan.

What are the ICS key principles? ›

Incident personnel should adhere to principles of accountability, including check-in/check-out, incident action planning, unity of command, personal responsibility, span of control, and resource tracking.

What are the four main sections within the ICS plan? ›

The General Staff is made up of four sections: Operations, Planning, Logistics, and Finance/Administration. As mentioned previously, the person in charge of each section is designated as a Chief. Section Chiefs have the ability to expand their section to meet the needs of the situation.

What are the 4 R's of incident management? ›

What are the 4 Rs of incident management? The four Rs of incident management refer to a framework that encapsulates the process of effective incident management. They are repair, resolution, recovery and restoration.

What are the 5 pillars of emergency response? ›

5 phases of emergency management
  • Prevention. Prevention focuses on preventing hazards from occurring, whether they are natural, technological or caused by humans. ...
  • Mitigation. Mitigation is the effort to reduce loss of life and property by lessening the impact of disasters and emergencies. ...
  • Preparedness. ...
  • Response. ...
  • Recovery.

What are the basics of ICS? ›

ICs are built with semiconducting components such as silicon. Because of the small size and delicate nature of IC, a series of tiny gold and aluminium wires are joined together and moulded into a flat block of plastic or ceramic.

What are the 5 main components of ICS? ›

ICS establishes five functional areas for management of major incidents: command, operations, planning, logistics, and finance/administration.

What are the three types of ICS? ›

Integrated circuits (ICs) are broadly classified into three main categories: analog, digital, and mixed-signal. These classifications encompass a range of functionalities, with mixed-signal ICs specifically designed to integrate both analog and digital signaling on a single chip.

Which position is always staffed in ICS? ›

In fact, the Incident Commander is the only position that is always staffed in ICS applications.

What is the chain of command in ICS? ›

Chain of command means that there is an orderly line of authority within the ranks of the organization, with lower levels subordinate to, and connected to, higher levels. The above ICS principles are used to communicate direction and maintain management control.

What is basic ICS? ›

BASIC INCIDENT COMMAND SYSTEM. ICS is the model tool for the command, control, and coordination of a response and provides a means to coordinate efforts of individual agencies as they work toward a common goal of stabilizing the incident and protecting life, property, and the environment.

What is common terminology in ICS? ›

ICS requires the use of common terminology, meaning standard titles for facilities and positions within the organization. Common terminology also includes the use of “clear text”—that is, communication without the use of agency-specific codes or jargon.

What are the three strategic priorities of the ICS? ›

What are the priorities? Priorities for incident objectives typically are: 1: Life Safety 2: Incident Stabilization 3: Property/Environmental Preservation Incident objectives are used to ensure that everyone within the ICS organization has a clear understanding of what needs to be accomplished.

What are the five major functions of ICS? ›

The primary function of an emergency response plan is to develop the incident specific details of the five functional components of the ICS - Command, Operations, Planning, Logistics and Finance/Administration.

What are the 5 C's of critical incidents? ›

The 5C model provides a structured framework that ensures clear, timely, and empathetic communication. By comprehending the crisis, coordinating efforts, collaborating with stakeholders, delivering effective communication, and confirming its impact, organisations can build trust and effectively manage crises.

What are the 5 areas of the incident command system? ›

ICS establishes five functional areas for management of major incidents: command, operations, planning, logistics, and finance/administration. Span-of-control recommendations are followed closely, so the organizational structure is never larger than required.

What are the 5 C's in security? ›

Change, Compliance, Cost, Continuity, and Coverage; these are all fundamental considerations for an organization. For anyone challenged with evaluating and implementing technical solutions, these factors provide a useful lens through which to assess available options.

What are the 5 C's of crisis response? ›

Here, we are going to discuss what we believe are the 5 Cs of crisis communications: Concern, Commitment, Competency, Clarity, and Confidence.

Top Articles
Latest Posts
Recommended Articles
Article information

Author: Kerri Lueilwitz

Last Updated:

Views: 6399

Rating: 4.7 / 5 (67 voted)

Reviews: 90% of readers found this page helpful

Author information

Name: Kerri Lueilwitz

Birthday: 1992-10-31

Address: Suite 878 3699 Chantelle Roads, Colebury, NC 68599

Phone: +6111989609516

Job: Chief Farming Manager

Hobby: Mycology, Stone skipping, Dowsing, Whittling, Taxidermy, Sand art, Roller skating

Introduction: My name is Kerri Lueilwitz, I am a courageous, gentle, quaint, thankful, outstanding, brave, vast person who loves writing and wants to share my knowledge and understanding with you.