Your aim in responding to a cyber-attack is to limit the damage and stop the incident from reoccurring. While this sounds simple it may not be. Why? Because your organisation will need to make a potentially complex and important decision at the outset….