Standardization of NTP traffic gaining more attention then ever before. With the increase in the possibility of NTP amplification attack and random malicious NTP server being spun up, organizations need to ensure how their severs and other devices sync up the clocks. Many organizations route their NTP traffic over the internet and some are not just restricted to one or more trusted NTP servers the traffic can go to.

Organization need to have dedicated primary NTP servers and all internal assets should only be talking to the primary NTP servers. The primary NTP server can then use a trusted source external.

For more information refer below

https://blog.apnic.net/2022/12/09/securing-ntp-against-mitm-attacks/