Skip to content
Home / Function (NIST CSF 2.0) / PR - Protect / IR - Infrastructure / IoT & SCADA

CISA Primary Mitigations to Reduce Cyber Threats to Operational Technology

This document focuses on:

The CISA “Primary Mitigations to Reduce Cyber Threats to Operational Technology” fact sheet outlines five core strategies for critical infrastructure operators to strengthen the cybersecurity of their operational technology (OT) environments. These include: removing OT connections from the public internet to prevent easy targeting by threat actors; changing default passwords immediately and using strong, unique credentials; securing remote access pathways with private networks, VPNs, and phishing-resistant multifactor authentication; segmenting IT and OT networks to limit the spread and impact of attacks; and maintaining the ability to operate OT systems manually in case of cyber disruptions, supported by tested contingency plans and backups. These mitigations address the most common vulnerabilities and are aligned with broader cybersecurity frameworks to help organizations reduce exposure to evolving threats targeting OT systems.


Publication's URL

https://www.cisa.gov/resources-tools/resources/primary-mitigations-reduce-cyber-threats-operational-technology

Additional documents on this topic



How would you rate this document ?

Click on a star to rate it!

What do you think of this document?

Your email address will not be published. Required fields are marked *