This includes creating a plan for responding to a cyber incident and minimizing the damage to the organization.