- Sep 23, 2021 7:38 pm GMT
Once again NIST and CISA, working in partnership, meet their defined deliverables to meet presidential directives to improve cybersecurity across all critical infrastructure sectors. It's easy to see the alignment and harmony that exists between NIST and CISA in this document. This alignment and harmony were also on full display today during the testimony of CISA Director Jen Easterly at the Senate hearing on National Cybersecurity Strategy: Protection of Federal and Critical Infrastructure Systems. Here are some of my key takeaways from the linked document:
CISA and NIST identified nine categories of recommended cybersecurity practices and used these categories as the foundation for preliminary control system cybersecurity performance goals. Each of the nine goals includes specific objectives that support the deployment and operation of secure control systems that are further organized into baseline and enhanced objectives.
Baseline objectives represent recommended practices for all control system operators while the enhanced objectives include practices for critical infrastructure supporting national defense; critical lifeline sectors (i.e. energy, communications, transportation, and water); or where failure of control systems could have impacts to safety. DHS will coordinate with its interagency and private sector partners to determine the applicability of the enhanced objectives within each sector. In addition to the objectives, Example Evidence of Implementation is provided for each objective to demonstrate what successful implementation of an objective might entail for an organization.
DHS expects to conduct much more extensive stakeholder engagement as the goals are finalized in the coming months.
Get Published - Build a Following
The Energy Central Power Industry Network is based on one core idea - power industry professionals helping each other and advancing the industry by sharing and learning from each other.
If you have an experience or insight to share or have learned something from a conference or seminar, your peers and colleagues on Energy Central want to hear about it. It's also easy to share a link to an article you've liked or an industry resource that you think would be helpful.