This bulletin summarizes the information that is included in NIST Special Publication (SP) 800-61 Revision 2, Computer Security Incident Handling Guide. This publication assists organizations in establishing computer security incident response capabilities and handling incidents efficiently and effectively. It emphasizes the importance of understanding the threats, identifying current attacks in their early stages in order to prevent subsequent damage and disruption, and sharing information to help other organizations identify similar threats and attacks. SP 800-61 Rev.2 was written by Paul Cichonski of the National Institute of Standards and Technology (NIST), Tom Millar of the United States Computer Emergency Readiness Team (US-CERT), Tim Grance of NIST, and Karen Scarfone of Scarfone Cybersecurity.References are provided to NIST publications and information that support the development of incident response capabilities.
Citation: ITL Bulletin -
NIST Pub Series: ITL Bulletin
Pub Type: NIST Pubs
computer security attacks, computer security incident, incident handling, incident prevention, incident response, incident response teams, information security, information technology, threats, vulnerabilities