Using the Site

As part of our mission of solving problems for a safer world, MITRE developed this free resource, drawing on best practice from MITRE’s own capabilities, relevant government sources, and the broader practitioner community. As the pace of cyber attacks against the health sector increases, so grows the need for greater sharing of practical ways to increase the resilience of these critical systems. Our hope is that by curating the best available resources in one place – and providing a logical pathway for using them – we can help network defenders and IT administrators better prepare for, respond to, and recover from ransomware attacks.

How to Begin

There are two ways to navigate through the site’s resources. First is via the homepage table which categorizes specific tools around the five stages of the National Institute of Standards and Technology (NIST) Cybersecurity Framework: Identify, Protect, Detect, Respond, Recover. For each stage, relevant tools are linked at the bottom of the column. Secondly, use the Resource Library page where you can search, sort, and filter to find the tool that best fits your needs.

Our experience has shown that three tools in particular offer a good place to start for organizations in early stages of planning.

  1. Cyber Operations Rapid Assessment (CORA), a lightweight assessment tool used to evaluate your overall cyber security operations and infrastructure. This tool is particularly well-suited for health organizations with smaller IT and information security teams.
  2. Crown Jewels Analysis (CJA), a process for identifying those cyber assets that are most critical to achieve an organization’s key objectives and purpose. This tool requires a greater level of effort, yields more detailed and robust results, but often requires additional, third-party support to ensure objectivity.
  3. Cyber Exercises and Assessments, a full range of table-top exercises, vulnerability and penetration testing, and adversary assessment methods to bolster an organization’s ability to identify, protect, and detect ransomware threats. By tailoring and applying assessment methodologies and tools focused on mission requirements, employing these methods can help improve an organization’s ability to assess and manage their enterprise ransomware risk.

We hope you find the Ransomware Resource Center helpful. If you have suggestions for improving it, or would like more information, please contact us at

MITRE is a not-for-profit, private company that is chartered to operate in the public interest. We operate multiple federally funded research and development centers (FFRDCs) and work in partnership with industry and academia. We work with federal government sponsors as a technical collaborator and advisor on critical research and development programs and technology acquisitions.

Pin It on Pinterest

Share This