Académique Documents
Professionnel Documents
Culture Documents
Key outputs
Challenges encountered
Lessons learned
Looking forwards
CDRT Membership
The CDRT internal structure follows
ICS principles, with the Chair and
Co-Chairs appointing a CDRT lead
to act in the incident commander
role. CDRT membership will fill
Planning, Operations, Logistics,
and Finance roles, as needed and
as appointed by the CDRT Lead.
Approach
Individual and joint meetings with stakeholders with iterative feedback points
to ensure accuracy and practicality
Based on federal and state best practices and mandates fused with best
practices in cybersecurity incident response
Tabletop exercise simulation exercise to train and rehearse for real life
scenarios
Key Outputs
Preventative measures
Play by Play instructions on key tasks and actions required to mitigate damage,
spread of incident and expedite remediation
Training plan
Risk assessment
Post-incident analysis
Lessons Learned
Know and understand the formal (and informal) roles of those who need to be
involved
Once the tool is created, you have to implement it, practice it, validate it and
continually improve it
Coming soon!
Questions
Michigan Cyber
Disruption Plan
Chris Christensen, Infrastructure Protection