Choosing Secure and Verifiable Technologies – Guidance from ASD’s ACSC and CISA

The Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC), in partnership with CISA, provided updated guidance intended to aid procuring organizations and manufacturers of digital products and services in choosing and developing technology that is secure by design.

CISA and partners encourage all organizations to review the guidance to assist with making secure and informed choices when procuring digital products and services.

During WaterISAC’s first in-person exercise that took place on December 5th last week, participating utilities asked questions regarding how to properly vet software vendors when selecting technologies for use at their utilities. It was mentioned during the exercise that CISA was currently working on guidance to help organizations in choosing secure and verifiable technologies. WaterISAC is passing through this guidance, which was also published on December 5th, for member awareness of these available resources and to further help the sector in these efforts. Access the full guidance at the Australian Cyber Security Centre.

Additional Resources

• Secure by Design | CISA
• Secure by Demand Guide: How Software Customers Can Drive a Secure Technology Ecosystem | CISA