In the lead up to the holidays and in light of persistent and ongoing cyber threats, the Cybersecurity and Infrastructure Security Agency (CISA) today released a CISA Insights with recommended actions that leaders should take to protect against potential cyber threats from sophisticated threat actors, including nation-states and their proxies. The recommended actions are not new but are intended to inform critical infrastructure executives and senior leaders with steps they can take to protect their business as well as prepare in the event a cyber incident occurs.
A few of the immediate actions CISA strongly urges critical infrastructure leaders to take are:
- Increase organizational vigilance by ensuring there are zero gaps in Information Technology (IT)/Operational Technology (OT) security personnel coverage and staff provides continual monitoring for all types of anomalous behavior. Security coverage is particularly important during the winter holiday season when organizations typically have lower staffing.
- Prepare your organization for rapid response by adopting a state of heightened awareness.
- Ensure your network defenders implement cybersecurity best practices. Enforce multi-factor authentication and strong passwords, install software updates (prioritizing known exploited vulnerabilities), and secure accounts and credentials.
- Stay informed about current cybersecurity threats and malicious techniques. Encourage your IT/OT security staff to subscribeto CISA’s mailing list and feeds to receive notifications when CISA releases information about a security topic or threat.
- Lower the threshold for threat information sharing. Immediately report cybersecurity incidents and anomalous activity to CISA, the FBI, and/or your organization’s Sector Risk Management Agency.
For the complete list of immediate actions that include actions for improving functional resilience and incident response resources, executives and IT professionals should review this CISA Insights, which can be found at cisa.gov/publication/preparing-and-mitigating-potential-cyber-threats.
Your support to amplify this advisory through your communications and social media channels is appreciated. And as always, thank you for your continued collaboration.
Protective Security Advisor, Region 5, Illinois
Cybersecurity and Infrastructure Security Agency
U.S. Department of Homeland Security
Cell: 217-299-3954 | email@example.com