Joint Guidance: Secure by Demand for OT Owners and Operators

Posted January 14, 2025
Technical Advisories

The National Cyber Security Centre (NCSC) has joined the USA's Cybersecurity and Infrastructure Security Agency (CISA) and international partners to release guidance detailing how operational technology (OT) owners and operators should integrate security into their procurement process when purchasing industrial automation and control systems as well as other OT products.

This guide is intended to help owners and operators purchase OT products, particularly industrial automation and control system products, with priority secure by design elements. The priority elements were selected for organisations to mitigate current cyber threats to OT and adhere to common legal requirements. Selecting manufacturers that implement these considerations can help buyers establish a resilient and flexible cybersecurity foundation in their OT systems that they can build on over the coming decades.

By ensuring the deployment of secure products on their networks, critical infrastructure owners and operators can reduce the potential damage from cyber threats and protect their systems from exploitation.

Download the Joint Guidance: Secure by Demand for OT Owners and Operators(external link)

Joint Guidance: Secure by Demand for OT Owners and Operators

Latest headlines

The NCSC delivers all recommendations following IPAC review

NCSC releases Cyber Security Insights Report for Q3 2024

Joint Advisory: Choosing secure and verifiable technologies

Joint Guidance: Enhanced Visibility and Hardening for Communications Infrastructure