NIST said Thursday its computer researchers published the Guide for Cybersecurity Event Recovery in a push to consolidate current recovery guidance on incident handling and contingency planning as well as offers a process that can help organizations create recovery plans for cyber attack incidents.
The agency noted that the publication offers strategic and tactical guidance on the development, testing and updates of recovery plans and it also urges organizations to establish a playbook for each potential cybersecurity incidents such as data breaches and ransomware.
“To be successful, each organization needs to develop its own plan and playbooks in advance,” said Murugiah Souppaya, one of the authors of the guide.
“Then they should run the plays with tabletop exercises, work within their team to understand its level of preparation and repeat.”