- Posted January 14, 2025
- Technical Advisories
The National Cyber Security Centre (NCSC) has joined the United States Cybersecurity and Infrastructure Security Agency (CISA) and other international partners to release guidance detailing how operational technology (OT) owners and operators should integrate security into their procurement process.
CISA and partners warn that cyber threat actors, when compromising operational technology (OT) components, target specific OT products rather than specific organisations.
This guide helps owners and operators with purchasing OT products, particularly industrial automation and control system products, with priority secure by design elements. Selecting manufacturers that implement these considerations can help buyers establish a resilient and flexible cybersecurity foundation in their OT systems that they can build on over the coming decades.
By ensuring the deployment of secure products on their networks, critical infrastructure owners and operators can reduce the potential damage from cyber threats and protect their systems from exploitation.