The Need to Protect Critical Infrastructure with Cybersecurity for IoT and OT

James
James Kent
Jan 2, 2023
cybersecurity cybersecurity for IoT and OT internet of things IoT operational technologies OT Thought Leadership U.S. cybersecurity

With the growing threat of cyberattacks on critical U.S. infrastructure, is the government prepared?

A December 1, 2022, report released by the U.S. Government Accountability Office (GAO) called for immediate action on cybersecurity for IoT and OT-connected devices to provide better security for critical infrastructure vulnerable to today’s sophisticated cyber threats.

The report indicates 16 critical infrastructure areas reliant on internet-connected devices and systems, providing essential services from electricity to health care. All sectors fall under the GAO report’s high-risk category.

A primary concern for the GAO is that more action is needed to provide the level of cybersecurity required to secure these critical U.S. departments. The GAO has provided more than 90 cybersecurity recommendations since 2010, with more than 50 unimplemented as of June 2022.

Mike Sheward, Head of Security for Particle, believes the U.S. government needs to get serious about cybersecurity for IoT and OT.

Mike’s Thoughts

“On the government accountability officers report on IOT and OT security. So, there are a couple of things that jump out to me. The first is that there are no shortage of different agencies within the federal government making recommendations about cybersecurity for these kinds of devices and having lots of different recommendations from lots of different places about lots of different types of devices is a very good way to kind of get into a state of analysis paralysis and not apply anything cause you’re worried about which standard you should be applying.

So, I would like to see more of a focus on the ecosystem that those devices are connected to. Maybe kind of sorting them out by classification so we can focus on securing that platform or that environment more than each device on a device-by-device basis. That would be probably more effective. The second thing is that a lot of the previous recommendations made in the report have not been implemented yet. That’s because, in my opinion, the government is probably still in the discovery stage for a lot of this stuff. The larger the organization, the harder it is to apply any kind of cybersecurity program.

Just because you don’t know what’s out there, you lose track of it. You can’t protect what you don’t know about. It’s hard to think of many organizations that are bigger than the federal government. So, I imagine that they are, working on doing the discovery, and so I need to focus on speeding that up so that you could probably do a lot of kind of disabling of things that no longer need to be in the environment, and then focusing on the things that are left for the new security standards.

Follow us on social media for the latest updates in B2B!

Image

Latest

DX
Pursuing the World’s Rarest DX: Vadym Ivliev, UT6UD, and the Story That Led Him to Bouvet
January 16, 2026

For some operators, Bouvet Island represents the ultimate technical challenge. For Vadym Ivliev (UT6UD), it is something more personal—and more mysterious. From his home in Kyiv—far removed from the ice, storms, and isolation of Bouvet—Vadym has long been drawn to the island not only for its legendary radio silence, but for the stories it inspires….

Read More
GameStop
Inside GameStop’s Meteoric Stock Surge: A Former Executive Reflects on Power, Pivots, and the Price of Winning
January 15, 2026

The meme-stock era may feel like old news, but its aftershocks are still reshaping how leaders think about transformation, risk, and reward. In the wake of unprecedented short squeezes, shuttered storefronts, and sudden wealth creation, executives across retail and tech are still asking what actually happened—and why. Few episodes crystallize those questions better than…

Read More
podcast
The DisruptED Journey with Tim Maitland at MarketScale (Episode Three)
January 15, 2026

Storytelling is changing fast, shaped by new platforms, shifting audiences, and a growing demand for authenticity. What started as traditional podcasting has evolved into community-driven ecosystems built on real voices and lived experience. In this landscape, storytelling isn’t just content—it’s a way to build connection, spark engagement, and drive meaningful change. When done well,…

Read More
education
The DisruptED Journey with Tim Maitland at MarketScale (Episode Two)
January 15, 2026

Education is at a crossroads. As AI, online learning, and workforce demands rapidly reshape how people gain skills, long-standing gaps in access and outcomes remain a major concern in Michigan. Recent reporting on the 2025 State of Education and Talent shows Michigan has fallen to its lowest ever ranking in per capita income, underscoring…

Read More
Related
WireXpert
Software & Technology
WireXpert MP Wire Mapping Overview
December 13, 2025
Healthcare
A Guided Overview of tManager from Softing
December 12, 2025

As industrial environments grow more connected and complex, manufacturers are increasingly looking for streamlined ways to manage data flows, configure devices, and maintain interoperability without adding operational friction. Tools that can be learned incrementally and adopted at a user’s own pace are becoming especially valuable, helping teams focus on outcomes rather than wrestling with software…

Read More
DeviceNet
Healthcare
5069-SDN Long Technical Overview: Complete Migration Strategy from 1769 DeviceNet Scanners
December 11, 2025

Migrating from legacy industrial control hardware to modern platforms is rarely glamorous, but it remains one of the most consequential tasks in keeping manufacturing systems running safely and efficiently. In this demonstration, the team tackles a shift from a 1769-based ControlLogix DeviceNet architecture to a 5069 platform—an upgrade that mirrors what many facilities face…

Read More