Vulnerability Self-Assessment Tool – Web Enabled (VSAT Web) 2.0 (US EPA)

U.S. EPA’s Vulnerability Self-Assessment Tool – Web Enabled (VSAT Web) helps utilities identify the highest risks to mission-critical operations and identify the most cost-effective mitigation options.

The Vulnerability Self-Assessment Tool – Web Enabled (VSAT Web) 2.0 is a user-friendly tool  that can help drinking water and wastewater utilities of all sizes to conduct a risk and resilience assessment.

Furthermore, the tool has been updated to reflect the requirements of the America’s Water Infrastructure Act (AWIA) (read more about AWIA here). Use of this tool to produce an RRA is not required.

With VSAT Web, a utility can:

• Identify the highest risks to mission-critical operations and
• Find the most cost-effective measures to reduce those risks

Highlights of VSAT Web:

• Designed for mobile devices like tablets and iPads, as well as personal computers, and runs on most Internet browsers.
• No VSAT Web User data is stored by or visible to EPA!
• Complies with risk assessment standards, and offers liability protection under the Department of Homeland Security’s Support Anti-Terrorism by Fostering Effective Technologies (SAFETY) Act program.
• VSAT Web is now available as an app on Apple iOS.

Update – February 27, 2020

The EPA recommends that utilities limit the number of asset/threat pairs to those that present the highest risk while using VSAT Web 2.0 to conduct a quantitative risk assessment. Attempting to analyze a high number of asset/threat pairs in a single assessment will render the assessment difficult to complete and make the interpretation of the results challenging. Utilities can group similar assets with the same threat profile into a single asset category and limit the threats to those with the highest likelihood of occurrence to reduce the total number of asset/threat pairs. If you have questions while using VSAT Web 2.0, please contact U.S. EPA at dw**********@*pa.gov.