{"id":211542,"date":"2026-05-10T05:23:00","date_gmt":"2026-05-10T09:23:00","guid":{"rendered":"https:\/\/testing.news-you-need.com\/index.php\/2026\/05\/10\/ci-fortify-is-the-new-road-map-for-state-and-local-resilience\/"},"modified":"2026-05-10T05:30:08","modified_gmt":"2026-05-10T09:30:08","slug":"ci-fortify-is-the-new-road-map-for-state-and-local-resilience","status":"publish","type":"post","link":"https:\/\/testing.news-you-need.com\/index.php\/2026\/05\/10\/ci-fortify-is-the-new-road-map-for-state-and-local-resilience\/","title":{"rendered":"\u2018CI Fortify\u2019 Is the New Road Map for State and Local Resilience"},"content":{"rendered":"<p><a href=\"https:\/\/www.govtech.com\/blogs\/lohrmann-on-cybersecurity\/ci-fortify-is-the-new-road-map-for-state-and-local-resilience\">\u2018CI Fortify\u2019 Is the New Road Map for State and Local Resilience<\/a><\/p>\n<p><a href=\"https:\/\/www.govtech.com\/blogs\/lohrmann-on-cybersecurity\/ci-fortify-is-the-new-road-map-for-state-and-local-resilience\">https:\/\/www.govtech.com\/blogs\/lohrmann-on-cybersecurity\/ci-fortify-is-the-new-road-map-for-state-and-local-resilience<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-05-10 05:23:00<\/a><\/p>\n<p>Source Domain: <a href=\"www.govtech.com\">www.govtech.com<\/a><\/p>\n<p>Author: <a href=\"\"><\/a><\/p>\n<p> Using an unordered list, summarize the following article with between 4 and 8 key points. <\/p>\n<p>                                    This past week the Cybersecurity and Infrastructure Security Agency (CISA) announced the release of its CI Fortify project, aiming to help critical infrastructure owners and operators defend themselves against hackers and maintain continuity during a geopolitical conflict.The CISA portal describes the program this way: \u201c\u2018CI Fortify\u2019 is an allied initiative bolstering public health and safety, defense critical infrastructure, continuity of the economy, and national security by ensuring operators are prepared to sustain essential operations during a geopolitical conflict. For planning purposes, operators should assume that in a conflict scenario third-party connections \u2014 such as telecommunications, internet, vendors, service providers, and upstream dependencies \u2014 will be unreliable and that threat actors will have some access to the OT network.\u00a0Isolation and Recovery are emergency planning objectives that can mitigate this threat within the next few years.\u201dHere\u2019s a related quote from Acting CISA Director Nick Anderson: \u201cIn a geopolitical crisis, the critical infrastructure organizations Americans rely on must be able to continue delivering \u2014 at a minimum \u2014 crucial services. They must be able to isolate vital systems from harm, continue operating in that isolated state, and quickly recover any systems that an adversary may successfully compromise.\u201d<\/p>\n<p>        DIGGING DEEPERGoing a bit further, you are probably wondering what is meant by \u201cIsolation\u201d and \u201cRecovery.\u201d Here are those details from CISA: \u201cIsolation includes proactively disconnecting from third-party and business networks to prevent OT cyber impacts and sustain essential operations in a degraded communications environment. The goal is to ensure essential service delivery occurs during an emergency rather than completely shutting down. This involves:Identifying critical customers, such as military infrastructure and lifeline services, and setting a service delivery target based on their needs.Determining vital OT and supporting infrastructure to meet that target in isolation.Updating business continuity plans and engineering processes to allow for safe operations for weeks to months while isolated.Tracking CISA and Sector Risk Management Agency (SRMA) communications to know when to isolate. Subscribe to updates from CISA.\u201cRecovery includes documenting systems, backing up critical files, and practicing the replacement of systems or the transition to manual in case isolation fails and components are rendered inoperable. It also includes addressing communications dependencies for recovery, such as licensing servers or business network connections.\u201cOperators should share and discuss this page with their managed service providers, system integrators, and vendors to help understand their communications dependencies and potential workarounds.\u201dTHE ONGOING CYBER THREATBack at the beginning of March, I covered the challenges of protecting critical infrastructure in a time of war in this blog. More than two months later, the problems have only grown more severe.Several months back, CISA warned that nation-state cyber actors have already prepositioned themselves within critical infrastructure systems and could target operational technology and telecommunications networks during geopolitical conflicts. The Center for Strategic and International Studies described the situation in more detail in this white paper last week: The Iranian Cyber Threat to U.S. Critical Infrastructure.Here\u2019s a brief excerpt: \u201cRecently, CISA and other U.S. agencies published an advisory notice warning of the threat posed to U.S. critical infrastructure by Iran-affiliated actors \u2014 many of which are thought to be associated with the Islamic Revolutionary Guard Corps. CISA warned that cyber incidents exploiting vulnerabilities in programmable logic controllers (PLCs) \u2014 types of computers that control and monitor industrial equipment or machinery \u2014 had caused disruption to an unspecified number of U.S. organizations across multiple critical infrastructure sectors (including local government, water, and energy), gaining unauthorized access to systems and manipulating data displayed on monitors. Though the number of victims was not confirmed, the advisory stated that the incidents had resulted in operational disruption and financial loss.\u201dThe Record from Recorded Future News elaborates here: \u201cIn comments to Recorded Future News, [CISA Acting Director Nick] Andersen argued that the CI Fortify effort was \u2018not in response to any particular nation-state actor\u2019 and denied that it was aimed specifically at Volt Typhoon. The initiative was designed to \u2018prevent the potential destructive impact to OT by any nation-state actor,\u2019 he said.\u00a0&#8230;\u201cAndersen added that artificial intelligence is also a primary concern prompting the pivot to CI Fortify. He told reporters on Tuesday that CISA and the Trump administration have had deep discussions about \u2018the increasing speed and velocity at which \u2026 artificial intelligence is going to sort of change and morph the types of impacts we would see for cyber defenders across the board, both for critical infrastructure and operational technology as well as traditional information technology.\u2019\u201dCybersecurity researchers have\u00a0reported\u00a0multiple recent cases of hackers using AI models to conduct large portions of cyber intrusions. Incident response firm Dragos\u00a0said\u00a0on Wednesday that a hacker used an AI model to compromise a municipal water and drainage utility in Monterrey, Mexico.FINAL THOUGHTSWhile it appears that the war with Iran could be winding down, with a ceasefire still in place and strong hopes for an agreement at the time I am writing this piece, the cyber attacks will not stop and may just be getting started at a new level.State and local governments must take aggressive steps to follow CISA\u2019s guidance as released in CI Fortify in the past week.<\/p>\n<p><\/p>\n","protected":false},"excerpt":{"rendered":"<p>\u2018CI Fortify\u2019 Is the New Road Map for State and Local Resilience https:\/\/www.govtech.com\/blogs\/lohrmann-on-cybersecurity\/ci-fortify-is-the-new-road-map-for-state-and-local-resilience Publish Date:&#8230;<\/p>\n","protected":false},"author":1,"featured_media":211543,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/erepublic.brightspotcdn.com\/dims4\/default\/87d08a6\/2147483647\/strip\/true\/crop\/891x433+0+98\/resize\/1440x700!\/quality\/90\/?url=http%3A%2F%2Ferepublic-brightspot.s3.us-west-2.amazonaws.com%2Fe5%2F1f%2Fd1304d8dccd23872331b672be57a%2Fshutterstock-264364412.jpg","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[26,20,24,35],"class_list":["post-211542","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-ai","tag-artificial-intelligence","tag-cybersecurity","tag-hacker"],"_links":{"self":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/211542"}],"collection":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=211542"}],"version-history":[{"count":1,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/211542\/revisions"}],"predecessor-version":[{"id":211544,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/211542\/revisions\/211544"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/211543"}],"wp:attachment":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=211542"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=211542"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=211542"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}