Well-integrated plans and processes are essential to enabling the business and technical response to a cyber security crisis. A successful response, however, also heavily depends on a variety of human elements. Under pressure and with time running out, a frequently small leadership group must make difficult decisions and give guidance to those depending on them. Cyber crises differ from previous sorts of crises in that they are more complex for