Blake Morgan

CISA and UK NCSC Release Joint Guidance for Securing OT Systems Release Date September 29, 2025 CISA, in collaboration with the Federal Bureau of Investigation, the United Kingdom’s National Cyber Security Centre, and other international partners has released new joint cybersecurity guidance: Creating and Maintaining a Definitive View of Your Operational Technology (OT) Architecture (https://lnkd.in/euEz8jyd). Building on the recent Foundations for OT Cybersecurity: Asset Inventory Guidance for Owners and Operators, this guidance explains how organizations can leverage data sources, such as asset inventories and manufacturer-provided resources like [software bill of materials] to establish and maintain an accurate, up-to-date view of their OT systems. A definitive OT record enables organizations to conduct more comprehensive risk assessments, prioritize critical and exposed systems, and implement appropriate security controls. The guidance also addresses managing third-party risks, securing OT information, and designing effective architectural controls. Key recommendations include: * Collaborating Across Teams: Foster coordination between OT and IT teams; * Aligning with Standards: Follow international standards such as IEC 62443 and ISO/IEC 27001. Organizations are encouraged to use this guidance to strengthen their OT security posture and reduce risks. For additional details, review the full guidance: Creating and Maintaining a Definitive View of Your Operational Technology (OT) Architecture (https://lnkd.in/ejrPCm4S) https://lnkd.in/eBEdW3tm

3

Access Control Audit Reporting Access control systems record thousands of events — but without proper review, critical signals can be missed. Audit reporting turns raw access data into actionable security intelligence. Effective access control audits help: • Identify unusual entry patterns • Detect unauthorised access attempts • Verify permissions match current roles • Highlight inactive or shared credentials • Support compliance and investigations Access logs are more than records. They are a security intelligence tool. Professional security operations don’t just store access data. They analyse it. #AccessControl #SecurityOperations #RiskMitigation #ThreatDetection #Audit #ProtectiveSecurity

3

The UK Cyber Governance Code of Practice sets out the most critical governance actions directors are responsible for when it comes to cyber security. This free webinar, designed specifically for board members, focuses on the 'Incident Planning, Response and Recovery' principle of the Code — covering everything from developing a cyber incident response plan, to business continuity, board communications during an incident, and planning for the typical phases of recovery. 📅 Wednesday 20 May 2026 | 14:00–15:00 GMT 🔗 https://ow.ly/qvRE50YwilF #CorporateGovernance #CyberGovernance #NonExecutiveDirector #BoardLeadership #CyberSecurity Cyber4Directors Susanne Alfs

3

The UK's National Cyber Security Centre (NCSC) emphasises that few UK businesses set minimum security standards for their suppliers, highlighting a potential vulnerability. Did You Know 💡 We provide supply chain assurance audits of your suppliers against guidance including ISO27001, NCSC Cyber Assessment Framework (CAF), Data Protection Act (DPA), GDPR and any combination of industry best practice and guidance to help assess and manage supplier risk exposure and supplier suitability, providing assurance of third-party arrangements. Find out more here 👉 https://lnkd.in/eiic9PU #SupplyChainAssurance #ThirdPartySupplier #SupplyChainSecurity 

3

The NCSC has confirmed a cyber incident affecting Collins Aerospace and is coordinating with partners. Incidents involving prime contractors elevate supply chain risk, particularly where third‑party VPN or SSO access exists. Forensic triage should prioritise credential misuse (MITRE ATT&CK T1078 – Valid Accounts) and log review for anomalous remote access, with MFA enforced across all external entry points. Red Team simulation of supplier‑origin attacks and network segmentation testing help validate containment paths and response playbooks. https://lnkd.in/e_7j2ZE7 #IncidentResponse #RedTeam #PenTesting #NCSC #CollinsAerospace #AerospaceSupplyChain

1

Ready to take control of your cybersecurity - without the jargon or headaches? Our latest blog breaks down the Cyber Essentials checklist into practical steps you can actually use. From firewalls and patching to access control and malware defence, simply follow the path to certification and protection. Drop the stress. Grab your guide. Get Cyber Essentials done. Read more: https://lnkd.in/eGnxY6ks

1

The IASME Cyber Assurance scheme has been redesigned using customer feedback, and the updated standard and assessment are now more accessible and scalable than before, offering a clear roadmap to achieving cyber resilience. 🛡️ Visit our website to learn more 👉 https://lnkd.in/ePHYfG_X

42

Penetration testing is not about panic. It is about proof. For NHS and public sector organisations, testing needs to stand up to scrutiny from auditors, regulators, and procurement teams. CREST and NCSC CHECK frameworks exist for a reason. They ensure testing is methodical, proportionate, and defensible, with clear scoping, evidence and reporting. At ESG, we work with accredited partners and proven methodologies to help organisations demonstrate that controls work in practice, not just on paper. #PenetrationTesting #CREST #CHECK #NHSIT #CyberAssurance #PublicSectorSecurity

3

Great news from IASME! By tailoring the Cyber Assurance scheme more closely to the specific needs of the customer, this standard enables SMEs to crucially strengthen their cyber resilience without any unnecessary complexities or difficulties. These updates mark an important step forward in helping organisations efficiently achieve stronger, more sustainable security. 🎉 #IASME #CyberAssurance #Updates #SME #ShiftKeyCyber

5

🎙️ New Podcast Episode | Securing Reliability: Common Audit Findings & Best Practice In Podcast #14, Securing Reliability: Common Audit Findings and Best Practices, David Robinson, Approval Schemes Manager at the NSI - National Security Inspectorate (NSI), shares frontline insight into the most frequent technical audit findings and how to avoid them. Recorded live at the Security Leaders Summit during The Security Event (April 2025) and sponsored by Verkada, this session dives into: 🔹 The most common compliance and technical issues identified during audits 🔹 Best practice guidance for installing Radio / Radio dual-path signalling systems 🔹 Practical steps to strengthen system reliability and performance How installers, designers, and internal auditors can reduce risk and avoid costly pitfalls Whether you're working on system design, installation, or audit oversight, this episode offers clear, actionable takeaways to help ensure compliance and long-term resilience. 🎧 Listen to the full episode: 👉 Apple Podcasts: https://lnkd.in/e6sNvx94 👉 Spotify: https://lnkd.in/eRZNeM8T 📅 Want more technical insight and peer-led learning? Join us at The Security Event 2026, where security professionals come together to share best practice and tackle emerging challenges. 🎟️ Register now for your FREE ticket: https://lnkd.in/edkHGybS #TSE2026 #TheSecurityBriefing #Podcast

2

🎉 COMING SOON: ISO 27001 Lead Implementer 🎉 Information security is no longer optional, it’s a business-critical capability. Positive Cyber Solutions Ltd | Cyber Consultancy is excited to announce our upcoming ISO/IEC 27001 Lead Implementer course, designed for anyone who wants to move beyond understanding the standard and start implementing, managing, and embedding an Information Security Management System (ISMS) efficiently. This course builds directly on our ISO 27001 Foundation training, taking learners from knowledge to practical application. You won’t just learn what ISO 27001 is, you’ll learn how to lead implementation, align security with business objectives, and drive continual improvement. 🔐 Why ISO 27001 matters: ISO 27001 is the globally recognised standard for managing information security risk. It helps organisations: ✅ Protect sensitive data and critical systems ✅ Demonstrate trust to customers, partners, and regulators ✅ Strengthen cyber resilience and governance ✅ Support compliance, audits, and assurance requirements ✨ Whether you’re advancing your career or strengthening your organisation’s security posture, the ISO 27001 Lead Implementer course equips you with the skills to make security work in practice, not just on paper. ✨ 📢 Launching soon, keep an eye out for full details in the coming weeks! #ISO27001 #InformationSecurity #ISMS #CyberSecurity #RiskManagement #Governance #Compliance #Training #PositiveCyberSolutions #LeadImplementer

14

6 Comments

Idela is now an IASME-approved Certification Body, authorised to deliver Cyber Essentials and IASME Cyber Assurance for UK organisations. We work with SMEs and suppliers seeking clear, proportionate certification aligned with recognised UK standards. More insights on certification, assurance, and evolving supplier expectations will be shared here over time.

1

Performing regular IT security audits helps embed good information security behaviours across key business processes. In our latest Learn blog, we explore why IT security audits matter, common challenges organisations face, and practical steps to conduct your own audit. You’ll also find a checklist to help get you started. Read more here 👉 https://lnkd.in/eq3a-5vq #CyberSecurity #SecurityAudit

5

UK cyber regulation is shifting from guidance to obligation... and the proposed Cyber Security & Resilience Bill is just the beginning. In this video, CSA consultant Ivaylo explains why organisations delivering essential, critical or digital services will soon need to prove resilience (and not just simply claim it). Our upcoming webinar, hosted speakers from the CSA SOC and UK Government frontlines, will explore this further - including: ✔️ The patterns shaping novel attacker behaviour, ✔️ The drivers behind emerging government action and regulation, ✔️ And their joint implications for organisations. 🌐 UK Threats and Regulatory Trends: A Leader's Briefing 📆 Tuesday 24th March at 10am Secure your space today: https://hubs.ly/Q045z1610 #cyberrisk #regulation #csrb

28

This week, Senior Technical Consultant, Bradley Potter, attended the UK Overseas Territories Cyber Security Conference in London, alongside colleagues from the Falkland Islands Government. The conference brought together cyber security professionals from across the Overseas Territories to share knowledge and best practice, with a strong focus on: - Incident response  - Threat hunting  - The use of Artificial Intelligence  - Cyber defence  - Information risk management  - Increasing investment in cyber security It was a valuable opportunity to strengthen collaboration, stay ahead of emerging threats, and continue building resilient and secure digital services for the Falkland Islands. #UKOT #cybersecurity

12

The UK National Cyber Security Centre National Centre for Cyber Security has published a Software Security Code of Practice. A key requirment is to manage and track third-party components in software development https://lnkd.in/eRSNs2yC #opensource #securebydesign #sbom

11

Windows 10 Security Transition: Prepare for October 2025 The Windows 10 security transition is approaching its final phase. From 14 October, Microsoft will stop providing technical assistance, software updates and security patches, leaving users increasingly vulnerable to malicious cyber threats. https://lnkd.in/ee7jQWd5

2