Protecting a building's BMS from digital threats requires a multifaceted approach. Critical best practices include periodically updating firmware to address risks. Requiring strong authentication protocols, including multi-factor confirmation, is very important. Furthermore, segmenting the BMS from business networks significantly lessens the impact