How to plan for after the hack

The National Institute of Standards and Technology has released draft guidance for recovering from a cyber incident in response to shifting beliefs that some events can’t be prevented.

Although it is not an operational playbook, the draft “Guide for Cybersecurity Event Recovery,” which NIST released earlier this month, provides guidance on how organizations can recover from a cyber breach by providing steps for creating a response plan.

“Much of the planning and documentation for recovering from a cybersecurity event needs to be in place before the cyber event occurs,” according to the document.

Continue reading: