The article presents the discussion on US National Institute of Standards and Technology (NIST) issued NIST Special Publication (SP) 800-1601. Topics include increase in ransomware incidents and the subsequent understanding that enterprises needed help withstanding, adapting and recovering from cyberattacks and compromises; and using heterogeneity to minimize common mode failures, particularly threat events exploiting common vulnerabilities.