The National Institute of Standards and Technology (NIST) recently published the Guide for Cybersecurity Event Recovery to help organizations develop a plan for recovering from cybersecurity incidents.
According to the guide, “The number of major cyber events continues to increase sharply every year, taking advantage of weaknesses in processes and people as well as technologies.”
Computer scientist Murugiah Souppaya, one of the guide’s authors, said, “It’s no longer if you are going to have a cybersecurity event, it is when.”
Since cyber events cannot be stopped, organizations must focus on improving their preventative capabilities–and cyber resiliency.
NIST computer researchers wrote the guide to provide a process that each organization–Federal or otherwise–can use to create its own comprehensive recovery plan to be ready when a cybersecurity event occurs. By providing tactical and strategic guidance for developing, testing, and improving recovery plans, the guide calls for organizations to create a specific playbook for each possible cybersecurity incident.
“To be successful, each organization needs to develop its own plan and playbooks in advance,” said Souppaya. “Then they should run the plays with tabletop exercises, work within their team to understand its level of preparation, and repeat.”
For more information on how your organization can prepare for and recover from cybersecurity events, please view the guide here.