This document provides guidance on what a cyber disruption is and how one should proceed in developing capabilities to plan for, prevent, mitigate and respond to such events. With the realistic impacts of an event as portrayed in the guide’s opening scenario, governments must already know the potential impacts and its planned response. A clear distinction is made between cyber disruptions and cyber incidents. Cyber incidents are more numerous and routine in nature. Cyber disruptions are major events potentially involving critical infrastructure. Most important is the scope of the effects that result from a cyber disruption.

With support from the U.S. Department of Justice, Office of Justice Programs, Bureau of Justice Assistance, the National Association of State Information Officers (NASCIO) has teamed with its state members, its corporate members and its allied state government associations to develop this guide. Learn more about NASCIO here.