In security management, what is the term for the record of events that occur including security incidents?

The term that accurately refers to the record of events that occur, including security incidents, is the event log. An event log systematically documents all logged events in a computing environment, providing a chronological record that can include information about security incidents, user logins, system errors, and other significant occurrences.

Event logs are essential for security monitoring and analyzing potential threats, as they help security teams understand what actions happened, when they occurred, and, if applicable, who initiated them. This type of log plays a crucial role in forensic analysis during security breaches, as it provides detailed information that can aid in pinpointing the cause of an incident.

While audit trails also document events and may cover elements of compliance and accountability, they are specifically oriented towards tracking changes made to data, ensuring that every change can be attributed to a specific user. An incident report, on the other hand, is a formal documentation created after an event has occurred, detailing the specifics and impacts of the incident rather than an ongoing record of all events. A change log records modifications made to systems or configurations rather than capturing all operational events. Thus, event log is the term that best fits the description given in the question.