Successfully resolving a major cyber incident takes more than shutting down the hackers. There’s still the nontrivial matter of restoring business capabilities and making improvements, coordinating with a wide range of stakeholders and remaining mindful of legal obligations and pitfalls.
All of which brings us to Communications, the last category of the NIST Cybersecurity Framework’s Recover function, and of the Framework itself. If the topic sounds familiar, it’s because NIST also includes a communications category within the earlier Respond function (check out our December 2016 Cyber Tactics column, “Having Your Say in Cyber Response”).