CISA Releases New Guidelines to Secure Firewalls, Routers, and Internet-Facing Servers

The Cybersecurity and Infrastructure Security Agency (CISA) has unveiled a new set of guidelines to fortify firewalls, routers, internet-facing servers, and other edge devices against cyber threats.

This collaborative guidance, supported by leading international cybersecurity organizations, aims to address vulnerabilities in hardware that form the backbone of critical infrastructure and operational networks worldwide.

Edge devices—like firewalls, routers, Virtual Private Network (VPN) gateways, Internet of Things (IoT) devices, and operational technology (OT) systems—are prime targets for cyberattacks due to their pivotal role in network security and connectivity.

The new guidelines are designed to help organizations secure these devices through robust practices, real-world mitigations, and product design recommendations.

Key Components of the Guidance

Security Considerations for Edge Devices

The Canadian Centre for Cyber Security (CCCS) led efforts to outline the threats and vulnerabilities commonly exploited in edge devices.

This section offers real-world case studies of device compromises and actionable mitigation strategies for administrators.

It also provides design principles for manufacturers to build secure devices by design, reducing the risk of compromise from the outset.

Digital Forensics and Monitoring Specifications

In a joint effort with the UK’s National Cyber Security Centre (NCSC-UK), CISA provides guidance on incorporating necessary security logging and remote data collection capabilities into network devices.

These features, which should ideally be pre-configured, enable organizations to detect and investigate cyber intrusions more effectively, helping them respond faster to threats.

The Australian Cyber Security Centre (ACSC) contributed two sets of strategic documents targeting different audiences:

• Executive Guidance outlines high-level measures organizations can adopt to secure and manage edge devices effectively.
• Practitioner Guidance provides a detailed roadmap of seven technical mitigation strategies for procurement teams, operational personnel, and cybersecurity experts to implement on-the-ground protections for edge devices.

CISA’s guidelines encourage device manufacturers to align their development processes with secure-by-design principles.

Manufacturers are directed to CISA’s Secure by Design page for practical insights into reducing vulnerabilities during development.

Critical infrastructure operators are also advised to refer to “Secure by Demand” considerations when acquiring digital products to ensure long-term security resilience.

These guidelines mark a significant step in safeguarding critical network infrastructure and raising global cybersecurity standards.

With collaboration between CISA, CCCS, NCSC-UK, and ACSC, organizations now have a comprehensive resource to protect their edge devices, mitigate risks, and enhance their readiness to face evolving cyber threats.

Investigate Real-World Malicious Links & Phishing Attacks With Threat Intelligence Lookup - Try for Free