⚙️Live webinar: AI governance in controlled environments: The next compliance challenge. Register now
MarketplaceCritical InfrastructureNIST SP 800-82 Rev. 3
Critical InfrastructureGuideline

NIST SP 800-82 Rev. 3

NIST Special Publication 800-02 Rev. 3 - Guide to Operational Technology (OT) Security

This document provides guidance on securing operational technology (OT) systems, which include programmable devices interacting with the physical environment. It addresses unique performance, reliability, and safety requirements, identifies threats, and recommends security measures.

Book your strategy callView source ↗

Overview

NIST SP 800-82 Rev. 3 is a guide to securing operational technology (OT), such as industrial control systems, transportation systems, and building automation systems. It includes an overview of OT systems and their topologies, explores common threats and vulnerabilities, and provides detailed security countermeasures to mitigate risks. The standard emphasizes the need to balance security with the unique performance, reliability, and safety needs of OT systems. This revision, finalized in September 2023, supersedes Rev. 2 and includes updates reflecting advancements in OT and emerging security challenges. It serves industries that rely on OT systems and aims to improve their resilience against cyber threats.

Related in Critical Infrastructure

Critical InfrastructureLaw

SOCIA 2018 — Security of Critical Infrastructure Act 2018

The Security of Critical Infrastructure Act 2018 (SOCIA) establishes a regulatory framework for managing national security risks to Australia’s critical infrastructure sectors. It introduces statutory obligations, reporting requirements, and oversight mechanisms for critical assets.

Australian Department of Home Affairs • Australia • vNo. 29, 2018

View details
Critical InfrastructureLaw

Clean Energy Act 2011

The Clean Energy Act 2011 establishes the framework for implementing a carbon pricing mechanism in Australia. It includes provisions for covered entities, emission obligations, and limits on emissions units.

Parliament of Australia • Australia

View details
Critical InfrastructureRegulation

EU Regulation 2022/1645 — Commission Delegated Regulation (EU) 2022/1645

EU Regulation 2022/1645 establishes mandatory cybersecurity management requirements for Part 21 Design Organisations (DOs) and Production Organisations (POs) in the aviation sector. It introduces the implementation of an Information Security Management System (ISMS) to protect critical systems, data, and processes from cyber threats.

European Commission • European Union

View details
Critical InfrastructureLaw

Renewable Energy (Electricity) Act 2000

The Renewable Energy (Electricity) Act 2000 establishes a legal framework to encourage the generation of electricity from renewable energy sources in Australia. It creates a system for renewable energy certificates and mandates a Renewable Power Percentage to ensure participation by electricity retailers.

Australian Government • Australia

View details

Ready to operationalize these standards?

6clicks maps regulations to controls, evidence and risks automatically.

Book your strategy call