Summary: WaterISAC is pleased to share that the American Water Works Association (AWWA), with the help of many subject matter experts (SMEs) within the water sector including WaterISAC, has released significant updates and revisions to its cybersecurity resources to aid utilities in building their cyber resilience. This comes as water and wastewater systems in the U.S. are being advised to remain vigilant amidst escalating global tensions that may threaten critical infrastructure, including but not limited to the conflict involving Iran.

The new Water Sector Cybersecurity Risk Management Guidance has been revised to engage water systems wherever they are in their cybersecurity journey, starting with the fundamentals for supporting increasing levels of maturity. The objective was to provide systems with actionable steps that provide the most immediate risk reduction value. AWWA has prepared a suite of updated resources that are freely available on its cybersecurity resource page.

Analyst Note:  AWWA’s Cybersecurity & Guidance was developed specifically to help water sector utility owners and operators with a “consistent and repeatable recommended course of action to reduce vulnerabilities to cyber attacks.” Likewise, the resources allow water and wastewater entities to evaluate their current environment through selected use cases that more closely mirror their organization and provides a more comprehensive and realistic description of how to implement the recommended controls. Members are encouraged to review the updated AWWA Cybersecurity & Guidance resources and assess your network environments regularly

Original Source: https://www.awwa.org/resource/cybersecurity-guidance/

Additional Reading:

• AWWA Cybersecurity & Guidance
• AWWA | Cybersecurity Risk Management Tool
• Water Sector Cybersecurity Risk Management Guidance
• AWWA Cybersecurity Risk Management Getting Started Guide

Related WaterISAC PIRs: 12