“Respond” consists of the development and implementation of activities necessary to take action with respect to a detected cybersecurity event.
This function supports the ability to contain the impact of a potential cybersecurity event, using all the tools at our disposal (human, technological and organizational).