Summary: The transformative role of Cyber Informed Engineering (CIE) in enhancing the resilience of water and wastewater infrastructure was recently highlighted at the S4x25 conference. The conference underscored lessons learned and effective case studies illustrating the impact of CIE on critical infrastructure. CIE aims to embed cybersecurity principles directly into the engineering processes of OT systems ensuring cybersecurity considerations are integrated from the ground up.

Analyst Comment: Threat actors most often seek to gain unauthorized access from afar by discovering and acting on vulnerable internet-facing systems. CIE methodology seeks to put more control into the hands of the organization being targeted by creating an environment where, even in the midst of an attack, utilities can effectively cut off the possibility of physical disruption through proper engineering means. WaterISAC encourages members to embrace the mindset of CIE and understand its role in ensuring the continuity of essential services in the face of these cyber threats.

Original Source: https://industrialcyber.co/cyber-informed-engineering/s4x25-integrating-cyber-informed-engineering-in-water-sector/

Related WaterISAC PIRs: 8, 12