CISA pushes critical infrastructure operators to prepare to work in isolation
Summary
The US Cybersecurity and Infrastructure Security Agency (CISA) has launched CI Fortify, a national initiative to help critical infrastructure operators prepare to function in isolation from the internet and third-party services during major cyberattacks. The program aims to ensure the continued delivery of essential services even when networks are degraded, disconnected, or under attack, emphasizing controlled isolation and rapid restoration capabilities.
IFF Assessment
This initiative from CISA is a proactive measure to improve the resilience of critical infrastructure against cyberattacks, which is beneficial for defenders.
Defender Context
This initiative highlights the increasing threat to critical infrastructure and the importance of operational resilience. Defenders should focus on developing robust incident response plans that include scenarios for operating in disconnected or degraded states. Organizations should prioritize testing their ability to isolate systems and maintain essential functions without external connectivity.