CISA Advisory

Michael Ahmad
CIP Cyber and Physical Security Analyst

The Cybersecurity and Infrastructure Security Agency (CISA) released an advisory bulletin on May 6, 2025, urging critical infrastructure entities to review and improve their cybersecurity posture in advance of potential attacks targeting operational technology (OT) and industrial control systems (ICS). The bulletin serves as a guide to highlight a minimum set of recommended practices and provides supplemental resources from cross-sector organizations.

CISA, in conjunction with the Federal Bureau of Investigation (FBI), Environmental Protection Agency (EPA), and Department of Energy (DOE), recommends that entities implement the following mitigation activities to strengthen their defenses against cyber threats:

  • Restrict public internet access to OT devices
  • Update default credentials and harden password requirements
  • Secure remote access to OT networks
  • Segment information technology (IT) and OT networks
  • Maintain the ability to operate OT systems manually

Texas RE encourages registered entities to refer to CISA’s advisory bulletin for associated resources and to the NIST Cyber Security Framework 2.0 Reference Tool for additional cybersecurity risk mitigation strategies.

Helpful Links

Texas RE Info Sheet
Acronym Guide
Mailing Lists
Texas RE Welcome Packet
Ethics Hotline
OATI webPortal
Ask a Question

Follow Us

Contact Us

Email Us
  8000 Metropolis Drive, Building A, Suite 300 Austin, Texas 78744
512-583-4900

©2023 Texas Reliability Entity. All rights reserved.
Privacy Policy | Terms of Use