Last year’s Executive Order 13636, Improving Critical Infrastructure Cybersecurity, developed a framework for reducing cyber risks to critical infrastructure.
The standards are optional for industry, but are expected to become a requirement for certain federal contractors. Federal officials announced plans last month to make certain contract awards contingent on compliance with these standards.