The CISA “Primary Mitigations to Reduce Cyber Threats to Operational Technology” fact sheet outlines five core strategies for critical infrastructure operators to strengthen the cybersecurity of their operational technology (OT) environments. These include: removing OT connections from the public internet to prevent easy targeting by threat actors; changing default passwords immediately and using strong, unique credentials; securing remote access pathways with private networks, VPNs, and phishing-resistant multifactor authentication; segmenting IT and OT networks to limit the spread and impact of attacks; and maintaining the ability to operate OT systems manually in case of cyber disruptions, supported by tested contingency plans and backups. These mitigations address the most common vulnerabilities and are aligned with broader cybersecurity frameworks to help organizations reduce exposure to evolving threats targeting OT systems.
Publication's URL
https://www.cisa.gov/resources-tools/resources/primary-mitigations-reduce-cyber-threats-operational-technologyAdditional documents on this topic
- CISA Principles for the Secure Integration of Artificial Intelligence in Operational Technology
- NIST SP 800-82 Rev. 3 Guide to Operational Technology (OT) Security
- NIST SP 800-88 Rev. 2 Guidelines for Media Sanitization
- NIST IR 8349 Methodology for Characterizing Network Behavior of Internet of Things Devices
- CIS Controls Internet of Things Companion Guide ★★★★★