Boosting security: Ripple effect spurs agencies to protect water systems

May 6, 2024
1 min read

TLDR:

  • Cyberattacks on water supplies have led local agencies to ramp up security measures.
  • Altoona Water Authority adopted a “zero trust model” after incidents in Florida and Aliquippa.

In the wake of state and national cyberattacks on water supplies, local agencies are taking steps to enhance their cybersecurity measures. Following incidents in Florida and Aliquippa, the Altoona Water Authority adopted a “zero trust model” to ensure strict identity verification for every person and device attempting to access resources. This model disconnects devices if they cannot be adequately protected, preventing potential harm.

The Altoona Water Authority also implemented multi-factor authentication, requiring employees interacting with control systems to provide both a key and a username/password for access. They attend quarterly meetings of a regional task force connected with Homeland Security to remain updated on guidelines and best practices.

While Martinsburg, Williamsburg Borough, and Logan Township’s Sewer Department have outsourced their cybersecurity responsibilities, Bellwood Borough Authority and Tyrone Borough manage their own cybersecurity measures effectively. Stiffler McGraw and Associates engineering is working closely with the Freedom Township Water and Sewer Authority to implement various recommendations from federal agencies to strengthen protections against malicious activity.

Local experts, such as Joe Harford of Reclamere and Zach Beckel of United Datacom Networks Inc., recommend proactive cybersecurity planning and annual risk analysis to combat evolving cyber threats. They stress the importance of staying vigilant and proactive in the face of increasing cyberattacks affecting local companies.

Latest from Blog

EU push for unified incident report rules

TLDR: The Federation of European Risk Management Associations (FERMA) is urging the EU to harmonize cyber incident reporting requirements ahead of new legislation. Upcoming legislation such as the NIS2 Directive, DORA, and