NIST is working on a revision of the Computer Security Incident Handling Guide. The revised guide is designed to help incident response teams create an incident response policy and plan. NIST encourages organizations to review an incident immediately after it happens because that practice will help them to prepare for future incidents.Recommendations to the guidance must be submitted by March 16 to 800-61rev2-comments@nist.gov with “Comments SP800-61″ in the subject line. The guide encouarges incident teams to think of an attack in two ways: by method and what needs to be fixed.”]
Source: https://www.cuinfosecurity.com/revising-way-to-handle-computer-incidents-a-4536