We have released new guidance in collaboration with our international partners for OT owners and operators. Foundations for OT Cybersecurity: Asset Inventory Guidance for Owners and Operators helps critical infrastructure organisations identify which assets to secure and protect, forming a basis to organise their defences and reduce the risk of a cyber security incident.
The guidance outlines a process for OT owners and operators to create an asset inventory and taxonomy. It also outlines how OT owners and operators can maintain, improve, and use their asset inventory to protect their most vital assets.
An asset inventory is an organised, regularly updated list of an organisation’s systems, hardware, and software. For OT environments, a key part of creating an asset inventory is developing a taxonomy – a system that classifies assets based on function and criticality. Using a taxonomy allows OT owners and operators to structure and prioritise OT assets, help identify risks, and manage vulnerability and incident response.
This publication supports advice within our Foundations for modern defensible architecture and Principles of operational technology cybersecurity.
Learn more through Foundations for OT Cybersecurity: Asset Inventory Guidance for Owners and Operators.