CISA releases CI Fortify guidance for critical infrastructure resilience
Public Sector Action
Summary
Hide ▲
Show ▼
CISA released CI Fortify, guidance for critical infrastructure operators across sectors to help keep essential services running during cyberattack or crisis conditions. The framework focuses on isolating operational systems from third-party and business networks and preparing organizations to maintain continuity when dependencies fail. The guidance also emphasizes recovery planning, including backups, component replacement, and the ability to shift to local or manual operations. Later reporting highlighted the same initiative as a launch for operators in water, energy, transportation, and communications, with attention to degraded communications and recovery after compromise.
Related Happenings
US government warning on Iran-affiliated critical infrastructure disruption risk
Public Sector Action
First: 18.05.2026 18:41
Last: 18.05.2026 18:41
Sources 1
About this happening:
The **US government** warned that **Iran-affiliated threat actors** were disrupting **US critical infrastructure** through attacks on **Internet-exposed OT devices** across **mult...
US government warning on Iran-affiliated critical infrastructure disruption risk
Public Sector ActionAbout this happening: The **US government** warned that **Iran-affiliated threat actors** were disrupting **US critical infrastructure** through attacks on **Internet-exposed OT devices** across **mult...
UK government Continues parliamentary passage of the Cyber Security and Resilience Bill for Following the King’s Speech on May 13
Public Sector Action
First: 13.05.2026 12:05
Last: 13.05.2026 12:05
Sources 1
About this happening:
The **UK government** is advancing the **Cyber Security and Resilience Bill** through parliament, a move that would raise resilience requirements for **critical infrastructure pro...
UK government Continues parliamentary passage of the Cyber Security and Resilience Bill for Following the King’s Speech on May 13
Public Sector ActionAbout this happening: The **UK government** is advancing the **Cyber Security and Resilience Bill** through parliament, a move that would raise resilience requirements for **critical infrastructure pro...
CISA joint guide on agentic AI security
Public Sector Action
First: 01.05.2026 15:00
Last: 01.05.2026 15:00
Sources 1
About this happening:
**CISA**, **ASD ACSC**, and other U.S. and international partners published **Careful Adoption of Agentic Artificial Intelligence (AI) Services**, a joint guide for organizations...
CISA joint guide on agentic AI security
Public Sector ActionAbout this happening: **CISA**, **ASD ACSC**, and other U.S. and international partners published **Careful Adoption of Agentic Artificial Intelligence (AI) Services**, a joint guide for organizations...
CISA-led zero-trust guide for OT environments
Public Sector Action
First: 30.04.2026 17:00
Last: 30.04.2026 17:00
Sources 1
About this happening:
US government agencies led by **CISA** released **Adapting Zero Trust Principles to Operational Technology**, giving **OT operators** a framework to improve **critical infrastruct...
CISA-led zero-trust guide for OT environments
Public Sector ActionAbout this happening: US government agencies led by **CISA** released **Adapting Zero Trust Principles to Operational Technology**, giving **OT operators** a framework to improve **critical infrastruct...
CISA joint Zero Trust OT guide
Public Sector Action
First: 29.04.2026 15:00
Last: 29.04.2026 15:00
Sources 1
About this happening:
CISA and U.S. partners **published** a joint guide to help **OT owners and operators** apply **Zero Trust** to **operational technology environments**, giving government and infra...
CISA joint Zero Trust OT guide
Public Sector ActionAbout this happening: CISA and U.S. partners **published** a joint guide to help **OT owners and operators** apply **Zero Trust** to **operational technology environments**, giving government and infra...
Timeline
-
06.05.2026 16:15 2 articles · 21d ago
CISA launches CI Fortify guidance for critical infrastructure operators
Industry Or Public Sector UpdateCISA launched CI Fortify on Tuesday as a planning framework for critical infrastructure operators in water, energy, transportation and communications to prepare for cyber disruption by disconnecting OT systems from third-party and business networks, maintaining essential services in degraded communications conditions, and recovering compromised systems through backups, component replacement, or a transition to manual operations.
Show sources
- CISA Urges Critical Infrastructure Providers to Make Plans to Remain Operational if hit by Cyber-Attack — www.infosecurity-magazine.com — 06.05.2026 16:15
- CISA Urges Critical Infrastructure Providers to Make Plans to Remain Operational if hit by Cyber-Attack — www.infosecurity-magazine.com — 06.05.2026 16:15
-
05.05.2026 15:00 2 articles · 22d ago
CISA releases CI Fortify guidance
Industry Or Public Sector UpdateCISA released CI Fortify guidance for critical infrastructure entities across all sectors, urging them to prepare to operate through a crisis or conflict and keep vital services running while systems are under attack. The guidance recommends building isolation capabilities by disconnecting from third-party dependencies such as telecommunications, internet vendors, service providers, and upstream dependencies, and strengthening recovery capabilities by testing recovery plans and practicing local and manual operations.
Show sources
- CISA Unveils New Initiative to Fortify America’s Critical Infrastructure — www.cisa.gov — 05.05.2026 15:00
- CISA Unveils New Initiative to Fortify America’s Critical Infrastructure — www.cisa.gov — 05.05.2026 15:00