CISA, DOE, and UK’s NCSC Issue Guidance on Protecting Industrial Control Systems

The U.S. Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA), the Department of Energy (DOE), and the UK’s National Cyber Security Centre (NCSC) have released “Cybersecurity Best Practices for Industrial Control Systems,” an infographic providing recommended cybersecurity practices for industrial control systems (ICS). The two-page infographic summarizes common ICS risk considerations, short- and long-term cybersecurity event impacts, best practices to defend ICS processes, and highlights NCSC’s product on Secure Design Principles and Operational Technology. For more in-depth information, CISA encourages its partners to visit its Cybersecurity Best Practices for Industrial Control Systems webpage and DOE’s Cybersecurity Capability Maturity Model (C2M2) Program webpage. Additionally, CISA reminds its partners of the free assessments it conducts to help improve the security of networks and systems, which can be reviewed at https://www.cisa.gov/cyber-resource-hub.