Cyber, Intelligence, Homeland Security 4 MIN Read
April 30th, 2024
OUR CAPABILITIES
Today the White House is releasing a National Security Memo to replace and modernize the rules of the road issued in 2013 for Critical Infrastructure, PPD-21. This is a significant advancement to a policy that now lists the Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA) as the lead coordinator. The water sector and its members are included in the directive for protection as a Systemically Important Entity (SIE).
Earlier this month, it was revealed that the hackers who infiltrated a Texas water facility in January and caused a major system malfunction are likely Russian affiliates. This was the latest in a string of U.S. water system breaches, many with links to Iran and China. In fact, in just the last six months, similar cyberattacks on critical water infrastructure have happened in Georgia, Florida, Pennsylvania and Indiana, too. Of the more than 153K water system entities, these attacks mostly focused on rural towns whose capacity and resources to respond are far outmatched by these nation-state aggressors, making them prime targets.
And they won’t be the last.
This is why it’s incredibly important that the water sector, like every sector of critical infrastructure in the U.S., take action to enhance both cybersecurity and resilience. Specifically, there are five things the water sector can do now to plan and prepare for the near inevitability of an attack or an attempted one.
GDIT is continually collaborating with customers at the federal, state and local level to help them prepare, plan and respond to cyber threats, and to ensure they’re leveraging every resource available in the pursuit of that goal. We understand the threat to the nation’s critical infrastructure is real, constant and – together – addressable.