Big news and a tremendous honor today for Nozomi Networks. The United States Cybersecurity and Infrastructure Security Agency (CISA) has invited us to be a founding partner to help build the Joint Cyber Defense Collaborative (JCDC) to incorporate deep Industrial Control Systems security expertise. CISA is expanding the JCDC to further increase U.S. government focus on the cybersecurity and resilience of industrial control systems and operational technology (ICS/OT).
Adding ICS Expertise to JCDC
The JCDC-ICS will build on the existing platform of the JCDC by taking advantage of the knowledge, visibility, and capabilities of Nozomi Networks and others in the ICS community to build plans around the protection and defense of control systems; inform U.S. government guidance on ICS/OT cybersecurity; and contribute to real time operational fusion across private and public partners in the ICS/OT space.
According to CISA Director Jen Easterly, who announced JCDC-ICS today at S4x22, “Ensuring (critical infrastructure) security and resilience must be a collective effort that taps into the innovation, expertise, and ingenuity of the ICS community. I’m excited to leverage our evolving JCDC platform to enable us to plan, exercise, and collaborate with industry leaders to drive down risk to the systems and networks we depend on so greatly as a nation.”
Doing Our Part to Strengthen Collective Defenses
For nearly a decade, Nozomi Networks and our commitment to continuous innovation in OT and IoT cybersecurity has helped secure the world’s top oil and gas operators, electric utilities and other critical infrastructure providers. Today, we support more than 57 million devices in thousands of installations across energy, manufacturing, mining, transportation, utilities, building automation, smart cities, government agencies and critical infrastructure. We are the industry’s first, and only, FIPS-compliant OT/IoT solution, giving our Federal customers the assurance of a robust, hardened platform for cybersecurity threat detection and visibility.
In addition to helping customers anticipate interruptions, diagnose security and process anomalies, and respond to risks, we also work with government agencies, global industry standards bodies (like IEC and ISA Global Cybersecurity Alliance), and some of the world’s most respected IT Security vendors to help drive the change needed to help OT and ICS security defenders gain the upper hand.
Even before today’s JCDC news, Nozomi Networks has been actively working with CISA’s CISCP Advanced Technical and Training Exchange and briefing other (U.S. and other) government agencies and legislators on ways to address the unique requirements for effective critical infrastructure security. Over the years we have responsibly disclosed dozens of vulnerabilities to ICS-CERT.
In 2020, Nozomi Networks became the first OT and IoT security specialist to be named a MITRE CVE Numbering Authority (CNA), assigning CVEs to OT and IoT vulnerabilities. Additionally, we are a working member of several Information Sharing and Analytics Centers (ISACs) including the NERC Electricity Information Sharing and Analysis Center (E-ISAC), and the Maritime Transportation System ISAC (MTS-ISAC).
Even with this latest news today around the JCDC, I can honestly say we are just getting started. You can expect much more from Nozomi Networks over the coming months as we leverage our deep industry expertise and strengths in innovation to work with the public and private sector to build the strongest collective defense possible.