Kristin Sanders, chief information security officer for the Albuquerque Bernalillo County Water Utility Authority, revealed how New Mexico’s largest water and wastewater utility has been addressing the security challenge by leveraging a series of software solutions, sensors and internet-of-things technology.
The plan, which encourages owners and operators of industrial control systems to "implement measures or technology that enhance their detection, mitigation, and forensic capabilities," was not released in full to the public — or to many vendors who might be instrumental in actualizing key objectives.
The report comes after attempts late last year by suspected North Korean hackers to steal data from at least nine healthcare companies, such as Johnson & Johnson, Novavax and AstraZeneca.
Today’s columnist, Andrea Carcano of Nozomi Networks, points out that the attempted attack at the water facility February 5 in Oldsmar, Fla., underscores the vulnerability of similar plants around the country. Carcano offers five takeaways security teams can put to work.
A new research report released Thursday by Claroty said that vendors and industrial organizations must come to grips with these trends and act upon bug reports because the attacks and vulnerabilities will not abate.
Contributing $5.4 trillion to the U.S. economy, the maritime transportation system will adhere to guidelines for threat information sharing, creating a cybersecurity workforce, and establishing a risk framework for operational technology.