National Response Framework

The National Response Framework, issued by the Department of Homeland Security (DHS) in January 2008, provides guidance to coordinate cyber incident response among federal entities and, upon request, state and local governments and private sector entities. Specifically, the Cyber Incident Annex describes the framework for federal cyber incident response in the event of a cyber-related incident of national significance affecting the critical national processes.

Further, the annex formalizes the National Cyber Response Coordination Group (NCRCG). As established under the preceding National Response Plan, the NCRCG continues to be cochaired by DHS’s National Cyber Security Division (NCSD), the Department of Justice’s Computer Crime and Intellectual Property Section, and the DOD. It is to bring together officials from all agencies that have responsibility for cybersecurity and the sector-specific agencies identified in Homeland Security Presidential Directive 7. The group coordinates intergovernmental and public/private preparedness and response to and recovery from national-level cyber incidents and physical attacks that have significant cyber-related consequences.

During and in anticipation of such an incident, the NCRCG’s senior-level membership is responsible for providing subject matter expertise, recommendations, and strategic policy support and ensuring that the full range of federal capabilities is deployed in a coordinated and effective fashion.