Operational Technology Cybersecurity Coalition

You may have heard of the Secure by Design pledge, where hundreds of software manufacturers agreed to make a good-faith effort to work towards cybersecurity goals over the following year. 🗝️But do those goals work to secure an operational technology environment? 🏭 Congressman Andrew Garbarino, Chairman of the U.S. House of Representatives Homeland Security Subcommittee on Cybersecurity and Infrastructure Protection, asked Jim Richberg of OTCC member company Fortinet that question during a recent Congressional hearing. Check out Jim's response ⬇️

Congratulations to Forescout's Alison King and Schneider Electric's Cassie Crossley on being named 2024 Women in IT Security Honorees! 🎉   The OTCC is incredibly proud to have Ali and Cassie on the team. Their expertise, leadership, and dedication to cybersecurity have been instrumental in driving innovative solutions that create a safer, more resilient digital and physical landscape while advancing the mission of the Operational Technology Cybersecurity Coalition in promoting effective cybersecurity for our most critical infrastructure.

✨ICYMI✨ Jim Richberg walked through the history and current state of the Federal Government’s focus on ‘secure by design’ IT and OT. The session — available on-demand at the link below — included a panel discussion with Operational Technology Cybersecurity Coalition Executive Director Andrew Howell and Founding Member Grant Geyer of Claroty making the case for why organizations should embrace a 🔐secure by design 🔐point of view for their cybersecurity strategy. Full discussion available now: https://lnkd.in/gJY6Jfjw #criticalinfrastructure #cybersecuritypolicy #operationaltechnology

Thanks, Fortinet, for the opportunity to have OTCC Executive Director Andrew Howell participate in yesterday's "Secure by Design: Important Considerations for OT" webinar! It was fun to have him join Grant Geyer of Claroty and Jim Richberg for this discussion on the shift toward "secure by design" for industrial organizations, ensuring cybersecurity for both legacy and modern OT systems. #OTSecurity   

Army Navy Country Club, VA: ✨ #UWIC 2024 was a smashing success, and a great way to kick off Cybersecurity Awareness Month! ✨ 🎉 Proud moment to see Aubrey Milham and Kim Gajewski on the big stage today. 🚀 Keep an eye on these top tier talents! Operational Technology Cybersecurity Coalition Mandiant (part of Google Cloud) Forescout Technologies Inc.

Today, we welcome✨XONA✨ as our newest member, bringing their valuable perspective on completely isolating untrusted transient endpoints from critical systems, dramatically reducing the attack surface of the most critical organizational assets. Thank you to Xona and all our member companies for joining forces to advance #OTsecurity and improve public policy. Stay current on our initiatives by following Operational Technology Cybersecurity Coalition on LinkedIn. 

Before Congress departed back to their districts, we wrote a few letters of support for their activity and leadership concerning operational technology for the United States Department of Defense through the 2025 National Defense Authorization Act, also known as the NDAA. 👏We applaud House Armed Services Committee Chairman Mike Rogers and Ranking Member Adam Smith for making sure the NDAA: ✅Requires the Chairman of the Joint Chiefs to provide to Congress a report that will give Congress the information it needs to make informed future resource investments in securing defense critical assets and infrastructure. ✅Creates accountability measures to encourage DoD to carry through on previous directives to fully map, prioritize, and protect critical OT assets and functions to ensure the reliability and weapons systems necessary to defend the U.S. 🙏We appreciate Senate Armed Services Committee Chairman Jack Reed and Ranking Member Roger Wicker’s commitment to including: ✅Mandate for the DoD Chief Information Officer to develop guidance on DoD’s zero trust strategy for our military’s connected devices and systems. ✅Directive for the DOD CIO to ensure the safety and security of DoD’s critical infrastructure by creating a more robust cyber resilience program for its critical facilities and assets. ✅Support for securing OT environments by incorporating OT into the information assurance vulnerability management program. This bipartisan, bicameral, public-private collaboration is the best path forward to address cybersecurity risks to our critical infrastructure, and we hope to be a resource on these efforts as the work continues. 

Earlier this week, we hosted a roundtable on maritime cybersecurity, featuring U.S. Department of Homeland Security Assistant Secretary for Cyber, Infrastructure, Risk, and Resilience Iranga Kahangama; Commander of U.S. Coast Guard Cyber Command Admiral Jason Tama; American Association of Port Authorities Holden Haley; Maritime Transportation System ISAC Executive Director Shawn Whiteside, MPA/MBA; Honeywell Vice President and General Manager of Global Cyber Products Michael Ruiz; and Forescout Technologies Inc. Vice President of Government Affairs Alison King.   Thank you to our amazing panelists and everyone who participated in this important discussion on the US Coast Guard's Maritime Cyber Strategy and ways to better enhance the security and resiliency of this critical sector.   #cyber #maritime #operationaltechnology

Today, many Americans are getting packed up and ready for their favorite 4th of July excursion or celebration. And today, in places around the world, cyber criminals are preparing their phishing, malware, and coordinated attacks on our nation's critical infrastructure.   That is why the mission of the Cybersecurity and Infrastructure Security Agency is imperative, and we appreciate their tireless work to figure out how to implement the Cyber Incident Reporting for Critical Infrastructure Act, passed by Congress in 2022.   As part of the rulemaking process, the Operational Technology Cybersecurity Coalition shared our thoughts on how CISA's proposed rules and requirements could be improved: https://lnkd.in/g7eCWzsW   Did you have feedback or thoughts related to the proposed rule? In the spirit of information sharing, please do that in the comments!   #CIRCIA #cybersecurity #incidentreporting #operationaltechnology

It's great to see the emphasis on Operational Technology (OT) in the bill report for the @U.S. Department of Homeland Security Appropriations Bill for Fiscal Year 2025 (FY25). We are encouraged by Congress’ action to require agencies to incorporate OT and Internet of Things (IoT) assets into the Continuous Diagnostics and Mitigation (CDM) program, led by the @Cybersecurity and Infrastructure Security Agency. As the report notes, the integration of OT “helps reduce agency threat surface, increase visibility into the Federal cybersecurity posture, and improve Federal cybersecurity response capabilities.” With the FY25 Appropriations bill advancing to the Senate, we urge lawmakers to uphold these critical requirements