Perhaps we’re bias, but the adage, “cybersecurity is a shared responsibility,” seems to aptly embody information sharing more than anything else. Information sharing and collaboration takes many forms. From Information Sharing & Analysis Centers/Organizations (ISACs/ISAOs) - like WaterISAC - to regional and local collaboration groups, and even trusted one-on-one interactions, sharing threat information (across all-hazards) is imperative for the security and resilience of any organization, sector, community, region, or nation. Therefore, as we conclude NCSAM and this final ‘15 Cybersecurity Fundamentals Awareness Month’ (15CFAM) series post, we address our personal favorite, #15-Participate in Information Sharing and Collaboration Communities from WaterISAC’s 15 Cybersecurity Fundamentals for Water and Wastewater Utilities.
In essence, information sharing is like a neighborhood-watch. Everyone is a consumer of the information. Some share more information than others. Some have more resources to process the information. Mature utilities can significantly help the community and sector by sharing their experiences. Likewise, less resourced utilities benefit from sharing communities by gaining access to a brain trust they may not otherwise have internally. Whether sharing information and observables from known threat activity or best practices to enhance security and resilience, involvement with like-minded organizations enables the entire community to learn and share knowledge and experience to help one another. Furthermore, some of the best working relationships occur through information sharing, and what’s more fun than that! But large or small, everyone benefits from the information being shared.
Like a neighborhood, water and wastewater utilities and other critical infrastructure sectors all face the same cyber threats. The more utilities engage and share with their regional peers and the community at-large, the more the sector benefits. Given these cross-sector relationships and inter-dependencies, as we bid adieu to NCSAM, we usher in November and Infrastructure Security Month (i.e., National Critical Infrastructure Security & Resilience Month) and urge everyone to take action to keep the critical infrastructures that provide for our way of life safe and secure.
Well, that’s a wrap on NCSAM and 15CFAM! We hope you enjoyed and found some value from this series and will continue throughout the year to Do Your Part. #BeCyberSmart. If you have missed any, or would like to revisit the ‘15 Cybersecurity Fundamentals Awareness Month’ posts, please search ‘15CFAM’ in the WaterISAC Resource Center.