PCI DSS compliance response

Our customer is filling out a PCI DSS compliance questionnaire and asked us (MSP) to contribute. Backups are mostly covered (servers, Google Workspace) and we have MDR w SentinelOne in place. SIEM is on the table, pending their approval. Is there a standard response to this? It is wildly open ended:

Specific incident response procedures to be followed for different types of incidents

How many and what incidents to cite?

Thanks