The America’s Water Infrastructure Act (AWIA) of 2018 required drinking water systems serving more than 3,300 people to examine their system to develop risk and resilience assessments (RRAs) and emergency response plans (ERPs). One of the most notable requirements was that electronic systems needed to consider cybersecurity threats, which may not have been previously considered. This includes systems like industrial control systems (ICS), billing systems, business networks, etc. For small system owners, an AWIA cybersecurity assessment may not have been comprehensive, since the AWWA J100 standard used as the basis for most RRAs tends to provide a high-level overview of critical assets. In many cases AWIA results provided a glimpse as to why system owners need to implement a comprehensive cybersecurity program. This roundtable will briefly discuss how we worked with a small water utility to prepare a preliminary cybersecurity program using a well-known cybersecurity framework.
Join the IT Committee on Thursday, November 17, 2022, at 12:00 p.m. for a roundtable discussion on AWIA requirements as it pertains to small utilities. This discussion will be facilitated by Matthew Lick from CDM Smith. Attendees are encouraged to bring their expertise to the conversation.
There is no cost, and you don't need to register. For Zoom connection information, please email Cynthia.Barnes@vaawwa.org