New National Cyber Incident Response Plan

cyber security insurance protection

DHS recently released the refreshed National Cyber Incident Response Plan (NCIRP).

Since the last version of the NCIRP was released in 2010, the nation has increasingly faced more complex cyber incidents. Every day, incidents across the United States necessitate that jurisdictions and organizations work together to share resources, integrate tactics and take actions to meet the needs of communities before, during, and after cyber incidents. The NCIRP provides a consistent and common approach and vocabulary to enable the whole community to work together to manage cyber incidents seamlessly.

This plan expands on recent policy updates, such as the Presidential Policy Directive/PPD-41, to clarify the Federal Government’s roles and responsibilities for preparing for, responding to, and recovering from significant cyber incidents. It describes a national approach to cyber incidents, and explains the important role that the private sector, states, and multiple federal agencies play in incident response and how those activities fit together.

The NCIRP directly responds to private sector requests for clarity on the roles and responsibilities of different federal government agencies, including an answer to the question—who do I call to report cyber incidents and get help? DHS has helped to clarify these points using analogies and lessons learned from exercises and real-world incidents.

We encourage you to read the NCIRP to learn more about federal cyber incident response responsibilities.

Copyright © 2017 IDG Communications, Inc.

Make your voice heard. Share your experience in CSO's Security Priorities Study.