Protecting a facility's Building Management from cyberattacks requires a proactive framework. Essential best practices include periodically patching software to address vulnerabilities. Requiring strong password policies, including two-factor verification, is extremely important. Furthermore, separating the BMS from business networks significantly