Twelve scenarios. Plain language. Written for towns.
Each playbook lists first-hour actions, continuity-of-service decisions, communication scripts, and jurisdiction-specific regulator hand-offs.
Ransomware affecting core services
Tax, permits, utility billing, and court scheduling encrypted on the same morning.
Treasurer / finance department BEC
Fraudulent wire instructions on a vendor payment or payroll change.
Public-records system compromise
Vital records, property assessments, or business licenses exposed or altered.
Police, fire, or court data exposure
CJIS-regulated data or equivalent provincial law-enforcement records.
Election infrastructure incident
Voter rolls, e-pollbooks, or election-night results affected.
Council or mayor social-media account takeover
Credible misinformation risk during a live event.
Vendor / SaaS supply-chain breach
Your platform vendor was breached and your data may be in scope.
Public-facing website defacement or redirect
Your municipal website displays unauthorized content or redirects to a hostile site.
Insider threat β departing employee or contractor
A current or recently-departed staff member misused access.
Water utility or wastewater customer-data breach
Customer billing and account data β not the treatment plant.
Pension / payroll data breach
Employee SSN/SIN, banking, and pension data exposed.
Lost or stolen device with municipal access
Laptop, phone, or tablet with municipal data goes missing.