You are here

(Update February 27, 2024) Passthrough: Top Cyber Actions for Securing Water Systems – Joint Fact Sheet by CISA, EPA, and FBI

(Update February 27, 2024) Passthrough: Top Cyber Actions for Securing Water Systems – Joint Fact Sheet by CISA, EPA, and FBI

Created: Tuesday, February 27, 2024 - 12:22
Categories:
Cybersecurity, OT-ICS Security, Federal & State Resources

CISA and partners updated the recent Fact Sheet – Top Cyber Actions for Securing Water Systems – with resources from water and wastewater systems sector organizations, including WaterISAC. The resources are intended to help support water systems in defending against malicious cyber activity. They include:

 

02/22/2024
Yesterday, CISA, the FBI, and the EPA released a joint fact sheet titled: Top Cyber Actions for Securing Water Systems – Free Services, Resources, and Tools for the Water and Wastewater Systems Sector. It includes contributions from sector entities, including WaterISAC.

The fact sheet outlines eight specific actions water and wastewater systems can take to reduce risk and improve resilience to malicious cyber activity and provides free services, resources, and tools to support each action. These actions include:

  1. Reduce Exposure to the Public-Facing Internet
  2. Conduct Regular Cybersecurity Assessments
  3. Change Default Passwords Immediately
  4. Conduct an Inventory of Operational Technology/Information Technology Assets
  5. Develop and Exercise Cybersecurity Incident Response and Recovery Plans
  6. Backup OT/IT Systems
  7. Reduce Exposure to Vulnerabilities
  8. Conduct Cybersecurity Awareness Training

WaterISAC urges members to review this fact sheet and the specific guidance provided for each of the actions listed above. For additional sector resources, visit CISA.gov/water.

Access the fact sheet at CISA