President Joe Biden has declared November 2023 Critical Infrastructure and Resilience Month, a reflection of the nation’s determination to safeguard its vital systems from cyber attacks by foreign adversaries.“This Critical Infrastructure Security and Resilience Month, let us recommit to reinforcing our critical infrastructure and remaining vigilant to threats that undermine our collective security and economic prosperity,” the proclamation reads.The annual period “focuses on educating and engaging all levels of government, infrastructure owners and operators, and the American public about the vital role critical infrastructure plays in the nation’s well being and why it is important to strengthen critical infrastructure security and resilience,” the Cybersecurity and Infrastructure Security Agency (CISA) said in a statement.
CISA Offers Security Advice
CISA’s Dr. David Mussington, executive assistant director for Infrastructure Security, kicked off the effort in a video with advice for infrastructure owners and operators to safeguard their systems and networks by:- Assess Your Risk. Organizations should identify their most critical functions and assets, define dependencies that enable the continuity of these functions, and consider the full range of threats that could undermine functional continuity.
- Make a Plan and Exercise It. Organizations should perform dedicated resilience planning, determine the maximum downtime acceptable for customers, develop recovery plans to regain functional capabilities within the maximum downtime, and test those plans under real-life conditions to ensure the ability to operate through disruption.
- Continuously Improve and Adapt. Organizations should be prepared to regularly adapt to changing conditions and threats. This starts with fostering a culture of continuous improvement, based on lessons learned from exercises and real-world incidents, and evolving cross-sector risks.




