News article

Response and recovery guide for small businesses

13 June 2019


New guide suggests five steps to help your business recover from a cyber incident

The National Cyber Security Centre (NCSC) has published new guidance to help small businesses get back on their feet after they experience a cyber incident.

Their 'Small Business Guide: Response and Recovery' sets out a 5-point plan that outlines how to:

  • prepare for incidents
  • identify what's happening
  • resolve the incident
  • report the incident to stakeholders
  • learn from the incident

A range of practical advice is included under these headings, including guidance on identifying critical systems and assets, making an incident plan, analysing antivirus/audit logs to help identify the cause of the incident and reviewing incident plans to reflect lessons learned

The latest guide is a companion piece to the NCSC's previous small business publications, including:

It can also be used in conjunction with Exercise in a Box, the digital toolkit recently launched to help small businesses and local authorities test their preparedness for a cyber attack.

By expanding this portfolio of guidance, the NCSC aims to help small businesses build their cyber security resilience and enable them to be up and running as soon as possible after an attack.