Published: June 2024
Sector: State and local government entities
As the nature, frequency, and severity of cyber attacks continues to evolve, entities may need a broad range of skills, capabilities, and tools to effectively navigate an incident.
This checklist helps entities assess and balance their people, processes, and technology to support effective cyber incident response and recovery. Entities can use it to map where they do or do not hold relevant cyber capabilities, understand whether these are internal or external, note when they were last tested, and address any gaps.
See our related report, Responding to and recovering from cyber attacks (Report 12: 2023–24).
Related resources
-
Published: June 2024
- Sector:
State and local government entities
Our checklist provides key questions that those charged with governance (such as executive management, boards, and councillors) can consider when planning how they respond to and recover from cyber security incidents.
-
Published: June 2023
- Sector:
State and local government entities
This risk management maturity model helps entities self-assess their risk management practices to understand what they are doing well and where they need to improve. It includes 19 questions and outlines 4 levels of maturity across the primary attributes of risk management.