Skip to main content
U.S. flag

An official website of the United States government

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Revised Guide Helps Organizations Handle Security-Related Incidents



Shirley M. Radack


This bulletin summarizes the information that is included in NIST Special Publication (SP) 800-61 Revision 2, Computer Security Incident Handling Guide. This publication assists organizations in establishing computer security incident response capabilities and handling incidents efficiently and effectively. It emphasizes the importance of understanding the threats, identifying current attacks in their early stages in order to prevent subsequent damage and disruption, and sharing information to help other organizations identify similar threats and attacks. SP 800-61 Rev.2 was written by Paul Cichonski of the National Institute of Standards and Technology (NIST), Tom Millar of the United States Computer Emergency Readiness Team (US-CERT), Tim Grance of NIST, and Karen Scarfone of Scarfone Cybersecurity.References are provided to NIST publications and information that support the development of incident response capabilities.
ITL Bulletin -


computer security attacks, computer security incident, incident handling, incident prevention, incident response, incident response teams, information security, information technology, threats, vulnerabilities


Radack, S. (2012), Revised Guide Helps Organizations Handle Security-Related Incidents, ITL Bulletin, National Institute of Standards and Technology, Gaithersburg, MD, [online], (Accessed April 14, 2024)
Created September 27, 2012, Updated January 27, 2020