Overview
- CISA introduced CI Fortify and started pilot technical assessments with select, unnamed operators, with expansion planned as the agency hires more staff.
- Isolation asks operators to cut operational technology off from business and third‑party networks to keep essential services running for weeks or months in a degraded state.
- Recovery guidance calls for detailed system documentation, current backups, and regular rehearsals to restore components or shift to manual controls if needed.
- The agency warned that state-backed groups, including China-linked Salt Typhoon and Volt Typhoon, threaten sectors like electricity, water, and internet service.
- Industry experts praised the focus on continuity but cautioned that isolation alone falls short without strong segmentation, internal access control, and vendor risk management.