Getting Started

“I want to get started using Cyber Recovery Operational Framework, but where do I begin?” This is a common question; and that’s OK. To begin, it is important to understand what Cyber Recovery Operational Framework is and why we created it.

The cyber recovery operational framework is a continuous effort at providing a practical, structured, consistent, systematic and comprehensive guide. It is a toolkit to help you build your own cyber recovery capabilities and roadmap. It is for every organisation, big or small. As a toolkit, you can use it to create, adapt or re-use it.

The cyber recovery operational framework was created because there are no free and publicly available cyber recovery operational toolkit that individuals or organisations can use. The artefacts that exist are standards, and high level principles based guides. These are different from ours.

Common Use Cases

Here are some of the use cases for this the cyber recovery operational framework, these have been broadly grouped into three principal areas – Students, Cyber Consultants and Organisations.

1. As a student: I want to use a cyber recovery operational framework to conduct a research in order to assess if an organisation has cyber recovery capability in place.
2. As a student: I want to use a cyber recovery operational framework to conduct a research in order to assess an organisation’s cyber recovery capability maturity.
3. As a student: I want to reuse and/or adapt an existing cyber recovery guide or operative in order to develop or customise one for research purposes.
4. As a cyber consultant: I want to use a cyber recovery operational framework to assess an organisation’s cyber recovery capability.
5. As a cyber consultant: I want to use a cyber recovery operational framework to assess an organisation’s cyber recovery compliance.
6. As a cyber consultant: I want to use a cyber recovery operational framework to assess an organisation’s cyber recovery roadmap.
7. As a cyber consultant: I want to reuse and/or adapt an existing cyber recovery guide or operative in order to develop or customise one for my client.
8. As an organisation: We want to assess our cyber recovery capability.
9. As an organisation: We want to assess our cyber recovery roadmap.
10. As an organisation: We want to assess our cyber recovery gaps, capabilities and maturity journey.
11. As an organisation: We want to assess our overall cyber recovery, business continuity, disaster recovery and incident response alignment.
12. As an organisation: We want to reuse and/or adapt an existing cyber recovery guide or operative in order to develop or customise one for internal use.

Papers, Presentations & Video

• An Operational Recovery Framework for Cyber Resilience: Distinguished Lecturer Webinars.
• Re-thinking Cyber Resilience: A presentation at the Distinguished Victor Program, at the IEEE Computer Society.
• Focusing on the Recovery Aspects of Cyber Resilience: This paper was presented at an IEEE Conference in 2020.
• Cyber Recovery Operational Framework: This was presented as a keynote at the ECCWS 2020- Proceedings of the 19th European Conference on Cyber Warfare and Security Paperback – 15 Jun. 2020
• Cyber Recovery Operational Toolkit: A keynote presented at the British Council sponsored Workshop on Adversarial Cyber Security, India / UK, Sept. 23-24, 2020.
• Cyber Recovery Operational Framework (Video): A presentation of the paper “Focusing on the Recovery Aspects of Cyber Resilience” at the IEEE CyberSA 2020 conference.
• Focusing on the Recovery Aspects of Cyber Resilience (Presentation): A presentation of the paper at an IEEE Conference.