Radack, S.
(2008),
Handling Computer Security Incidents: NIST Issues Updated Guidelines, ITL Bulletin, National Institute of Standards and Technology, Gaithersburg, MD, [online], https://tsapps.nist.gov/publication/get_pdf.cfm?pub_id=152110
(Accessed October 13, 2025)
Official websites use .gov
A .gov website belongs to an official government organization in the United States.
Secure .gov websites use HTTPS
A lock (
) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.
Handling Computer Security Incidents: NIST Issues Updated Guidelines
Published
Author(s)
Abstract
This bulletin summarizes information disseminated in revised NIST Special Publication (SP) 800-61-1, Computer Security Incident Handling Guide: Recommendations of the National Institute of Standards and Technology. Written by Karen Scarfone and Tim Grance of NIST and by Kelly Masone of Booz Allen Hamilton, SP 800-61-1 provides practical guidance to help organizations establish an effective incident response program, analyze and respond to information security incidents, and reduce the risks of future incidents. The bulletin covers the procedures and solutions for detecting, analyzing, prioritizing, and handling incidents, and presents NIST's recommendations concerning the establishment of incident response capabilities, the procedures for incident handling and reporting, the relationships between the incident response team and other groups, and the continual monitoring of incident response activities.Citation
ITL Bulletin -
NIST Pub Series
Pub Type
NIST Pubs
Download Paper
Keywords
Computer system security, incident handling, information systems security, information technology, risk management, security threats, US-CERT
Citation
Issues
If you have any questions about this publication or are having problems accessing it, please contact [email protected].
Created March 27, 2008, Updated February 19, 2017