Adrian Johnson
TLDR:
– The Office of the National Cyber Director (ONCD) released feedback from its 2023 Cybersecurity Regulatory Harmonization Request for Information (RFI), revealing concerns from critical infrastructure industries related to operational technology (OT).
– 69.6% of attacks responded to by X-Force in 2023 were against critical infrastructure organizations.
In an effort to enhance cyber resilience across critical infrastructure, the ONCD has highlighted major concerns from critical infrastructure industries related to operational technology (OT). The lack of regulatory harmonization in OT-related sectors is a significant hurdle, with industries calling for a more streamlined and coordinated approach to cybersecurity regulation. OT systems face challenges in adapting to rapidly evolving cybersecurity regulations, which has exposed them to a steep learning curve and significant investments in time and resources. While new cybersecurity regulations have been introduced, the process of adoption has been delayed due to complexities in existing operational frameworks and sector-specific nuances.
Industry stakeholders recognize the need for better regulatory harmonization but fear onerous regulations that do not account for the unique needs of each sector. The ONCD’s efforts are seen as a step in the right direction, working towards tangible security improvements in the OT-critical infrastructure landscape.
