The Cybersecurity and Infrastructure Security Agency, in collaboration with UK’s National Cyber Security Centre, or NCSC-UK, the FBI and international partners, has released Secure Connectivity Principles for Operational Technology.
As cyber threats intensify and the DOW’s 2027 zero-trust deadline approaches, join government and industry cyber leaders at the Potomac Officers Club’s 2026 Cyber Summit on May 21 to assess agency readiness, share best practices and build critical partnerships. Register now to attend.
What Is the Joint Guidance For?
The NCSC-UK-led guidance provides organizations with practical direction on addressing insecure connectivity and safeguarding operational technology environments from cyber risks, including nation-state-sponsored activity, CISA said Wednesday.
The joint guide outlines clear goals to help owners and operators design and operate secure connectivity within their operational technology, or OT, environments. As CISA’s Executive Assistant Director for Cybersecurity Nick Andersen noted, the guidance helps safeguard critical infrastructure against cyber threats and highlights the agency’s focus on collaborating with U.S. and international partners to deliver timely, actionable cybersecurity guidance.
“Together with our partners, CISA also urges OT device manufacturers and integrators to embrace secure-by-design principles because building security in from the start is the most effective way to reduce risk and safeguard the nation’s vital systems,” said Andersen.
Why Is OT Connectivity a Growing Concern?
As OT networks become more interconnected, organizations gain capabilities such as real-time analytics, remote monitoring and predictive maintenance. They also face greater exposure to cyber threats, which can potentially result in physical, environmental, or service-level impacts.
