Published: June 2024
Sector: State and local government entities

As the nature, frequency, and severity of cyber attacks continues to evolve, entities may need a broad range of skills, capabilities, and tools to effectively navigate an incident. 

This checklist helps entities assess and balance their people, processes, and technology to support effective cyber incident response and recovery. Entities can use it to map where they do or do not hold relevant cyber capabilities, understand whether these are internal or external, note when they were last tested, and address any gaps. 

See our related report, Responding to and recovering from cyber attacks (Report 12: 2023–24).