On May 15, the U.S. Department of Homeland Security (DHS) released its Cybersecurity Strategy, which outlines the Department’s approach to identifying and managing national cybersecurity risk. The Strategy consists of five pillars: Risk Identification; Vulnerability Reduction; Threat Reduction; Consequence Mitigation; and Enable Cybersecurity Outcomes. Each of these pillars is accompanied by one or more goals, which are themselves supported by objectives. Goal 3, which falls under the Vulnerability Reduction pillar, is “Protect Critical Infrastructure,” which DHS endeavors to accomplish through an objective to “Expand and improve sharing of cyber threat indicators, defensive measures, and other cybersecurity information,” among other objectives. Also of note, the provision of water is identified in the first paragraph of the Strategy’s introduction as an essential service, albeit one that is potentially threatened by cyber incidents.