End of crisis

Destruction or preservation of traces

Once the end of the crisis has been decided, all decision-making documents that could contain confidential information should be deleted.

In the case of ransomware, it may be interesting to keep encrypted files on offline media in case the encryption keys leak one day.

Oversight

At the end of the crisis, the personnel tend to relax after having been under great pressure. It is therefore essential to supervise both your new infrastructure and the staff.

Service providers

The service providers who have accompanied you will surely offer you to stay in contact, to sell you the "loaned" solutions for the resolution of the crisis, etc. Take the time to reflect.