4 October 2024
The National Cyber Security Centre (NCSC) has joined the Australian Signals Directorate’s Australian Cyber Security Centre (ASD's ACSC) and international partners to support the release of new guidance on cyber security for operational technology (OT).
ASD has developed the Principles of operational technology cyber security in consultation with industry. These principles are designed to help leaders, developers, and other stakeholders identify key cyber security risks in OT environments and understand the actions they can take to reduce them.
The six principles are:
- ensure the system is safe,
- know and defend your vital systems,
- protect your OT data — it is valuable,
- separate OT from other networks,
- secure your supply chain, and
- prepare your people — they are your first line of defence.
Organisations can use these principles to identify and mitigate the cyber security risks within their OT environments and related requirements. They can also help critical infrastructure protect their systems and supply chains from online threats.
Designing robust cyber security measures for OT environments is vital to protect the safety, availability, integrity, and confidentiality of essential services. It is important that decision makers are able to make informed, comprehensive decisions when designing, implementing, and managing IT environments.
Principles of operational technology cyber security | Australian Signals Directorate External Link