Critical Infrastructure Protection at the Local Level Water and Wastewater Treatment Facilities
By Colin Brooks
| December 09, 2019
The increasing number of Industrial Control System (ICS) vulnerabilities, coupled with continuing revelations about ICS compromises, emphasizes the importance of securing critical infrastructure (CI) against cyber threats[1],[2]. The ability to adversely affect the operation of an ICS through cyberspace is exacerbated by the increasing use of automation and implementation of common routing protocols to communicate with control devices [3]. Local water treatment facilities are particularly vulnerable to this attack vector due to the need to manage key functions with minimal staff. Reacting to specific cyber risks without developing a holistic method for managing risk provides only a modicum of protection. This monograph demonstrates how focusing on risk management as a mitigation strategy – not individual risks – maximizes the security efforts at the local level.
Critical Infrastructure Protection at the Local Level Water and Wastewater Treatment Facilities