Checkout
Contact Us
close
EUCI
>
Cybersecurity Fundamentals for Water and Wastewater Utilities

Cybersecurity Fundamentals for Water and Wastewater Utilities

September 29 - 30, 2026 Online :: Central Time

Overview Agenda Instructor Credits
Download
Print

The cybersecurity threat landscape for critical infrastructure is evolving rapidly, and the water and wastewater sector has become an increasingly attractive target for malicious actors. As cyber threats grow in sophistication and frequency, it is essential for utilities to strengthen their cybersecurity posture across both enterprise Information Technology (IT) and Operational Technology (OT) environments.

The Cybersecurity Fundamentals for Water and Wastewater Utilities course is specifically designed for water utility professionals who may not have formal cybersecurity training but are responsible for supporting or managing cyber risk in their organizations. It provides practical, actionable knowledge that bridges the gap between IT and OT security, enabling participants to better protect their systems and operations.

Participants will learn:

  • The basic principles of cybersecurity and how they apply to water sector operations.
  • Key differences between IT and OT systems, including distinct risk profiles, priorities, and operational requirements.
  • The most common threats are targeting IT and OT environments in water and wastewater utilities.
  • Foundational security measures that can be implemented to reduce risk across both enterprise and operational networks.
  • How to leverage available cybersecurity tools, best practices, and frameworks (such as CISA guidance, NIST standards, and sector-specific recommendations) to build a more resilient utility.
  • Real-world case studies illustrate the impacts of cyber incidents on water sector operations and lessons learned from these events.

Whether you are an operator, manager, engineer, or executive, this course empowers you with the knowledge to contribute to a cybersecurity culture that protects your utility’s critical services and safeguards public health and safety.

Learning Outcomes

By the end of the course, participants will be able to:

  1. Review Water and Wastewater Control Systems and Processes
    Identify how industrial control systems (e.g., SCADA, PLCs, HMIs) function in water and wastewater environments and the unique risks they face.
  2. Evaluate Emerging Cyber Threats and Defense Strategies
    Review the evolving threat landscape and assess appropriate defense mechanisms relevant to the water and wastewater sectors.
  3. Identify and Counteract Social Engineering Attacks
    Recognize various forms of social engineering (phishing, vishing, smishing) and implement mitigation strategies.
  4. Illustrate Threat Modeling in OT and IT Environments
    Apply structured threat modeling approaches to identify, assess, and mitigate risks across both operational and enterprise networks.
  5. Apply Risk Management Frameworks to Critical Infrastructure
    Use frameworks such as NIST CSF, ISA/IEC 62443, CIS Critical Controls, and SANS Five Critical Controls to assess and manage cyber risk in IT and OT systems.
  6. Assess Cyber Contracting and Legal Considerations
    Discuss the legal and regulatory aspects of cybersecurity, including best practices for procurement and third-party risk management.
  7. Identify Incident Response Processes and Procedures for OT and IT
    Explain the phases of incident response—preparation, detection, containment, eradication, recovery, and post-incident analysis—tailored to both IT systems and industrial control systems.

Register

Please Note: This event is being conducted entirely online. All attendees will connect and attend from their computer, one connection per purchase. For details please see our FAQ

If you are unable to attend at the scheduled date and time, we make recordings available to all attendees for 7 days after the event

REGISTER NOW FOR THIS EVENT:

Individual attendee(s)$ 1195.00 each(early bird rate)
(price after September 18, 2026 is $ 1,395.00)
Volume pricing also available

Individual attendee tickets can be mixed with ticket packs for complete flexibility
Pack of 5 attendees$ 5,075.00 (15% discount)(early bird rate)
(price after September 18, 2026 is $ 5,930.00)
Pack of 10 attendees$ 9,560.00 (20% discount)(early bird rate)
(price after September 18, 2026 is $ 11,160.00)
Pack of 20 attendees$ 17,925.00 (25% discount)(early bird rate)
(price after September 18, 2026 is $ 20,925.00)

Your registration may be transferred to a member of your organization up to 24 hours in advance of the event. Cancellations must be received on or before August 28, 2026 in order to be refunded and will be subject to a US $195.00 processing fee per registrant. No refunds will be made after this date. Cancellations received after this date will create a credit of the tuition (less processing fee) good toward any other EUCI event. This credit will be good for six months from the cancellation date. In the event of non-attendance, all registration fees will be forfeited. In case of conference cancellation, EUCIs liability is limited to refund of the event registration fee only. For more information regarding administrative policies, such as complaints and refunds, please contact our offices at 303-770-8800

Day one

Tuesday, September 29, 2026

Day two

Wednesday, September 30, 2026

Agenda

Tuesday, September 29, 2026
Central Time

Online

Log In

8:30 AM

Lunch Break

12:00 - 1:00 PM

Adjourn for the day

4:00 PM

8:30 AM - 8:45 AM

Log In

8:45 - 9:00 AM

Welcome and Introductions

  • Instructor Introduction: Background and roles
  • Participant Introductions: Name, current role, areas of specific interest, goals for the course
  • Syllabus Overview
9:00 AM - 12:00 PM

Morning Session: Understanding the Threat Landscape

  • ICS Concepts and Terminology
    • What is an Industrial Control System (ICS)?
    • Key Components of ICS (HMI, RTUs, PLCs, Sensors & Actuators, DCS)
    • Operational Technology (OT) vs. IT
    • Purdue Enterprise Reference Architecture (PERA)
  • Introduction to Cyber Threat for Water and Wastewater Utilities
    • The Most Common Cyber Threat Attack Vectors (Physical and Logical Access)
    • Who are the attackers and what do they want? (Nation State, Cyber Criminals, Terrorists, Hacktivists, Insider Threats, Script Kiddies)
    • The Basics about Advanced Persistent Threat (APT) Teams
    • Actual Attacks on Water Utilities (Examples and Lessons Learned)
    • Stages of the Intrusion Kill Chain (Lockheed Martin model)
    • ICS Cyber Kill Chain – Stage 1 (IT) and Stage 2 (OT)
12:00 - 1:00 PM

Lunch Break

1:00 - 4:00 PM

Afternoon Session: Defense Strategies & Common Exposures

  • Cyber Policy and IT Security Frameworks
    • Overview of various frameworks (NIST CSF, ISA/IEC 62443, CIS Critical Controls)
    • NIST Cybersecurity Framework (CSF) Functions (Govern, Identify, Protect, Detect, Respond, Recover)
    • NIST CSF Profiles and Tiers
  • Social Engineering
    • Risks and Techniques
    • Phishing, Vishing, Smishing, Clone Phishing, Angler Phishing
    • Other Social Engineering Methods
  • Threat Modeling in ICS/OT
    • What is a Threat?
    • Relationship Between Threats, Vulnerabilities and Risk
    • Steps of Threat Modeling (Identify Assets, Model System, Identify Threats, Assess Risk, Develop Mitigations)
    • When Should Threat Modeling be Used?
    • Exercise: Threat Modeling a Water Treatment Plant
  • Common Exposures of Email, Media, Supply Chain, Etc.
    • Email Security Risks and Mitigations
    • Social media and related Security Risks and Mitigations
    • Supply Chain Risks
    • Process Control System Exposure Risks
    • Procurement Controls
  • Discussion of Ransomware and Other Common Malware Variants
    • Definitions of Malware (Ransomware, Viruses, Worms, Trojans, Fileless Malware, Bots, Spyware)
    • Ransomware Discussion (Incidents, Demands, RaaS Models, what it Does)
    • Ransomware-specific Mitigations
    • Ransomware in ICS/OT Environment
    • Common Adversary Methodologies (Cyber Kill Chain, MITRE ATT&CK Framework)
    • Discussion of TTPs, Event Sources, and Indicators

Agenda

Wednesday, September 30, 2026
Central Time

Online

Log In

8:45 AM

Adjourn for the day

12:00 PM

8:45 AM - 9:00 AM

Log In

9:00 AM - 12:00 PM

Morning Session: Incident Response & Resiliency

  • Welcome and Recap of Day 1
  • General Overview of Technical Counter Measures
    • Cybersecurity Hardware (Firewalls, IDS/IPS, Logging, Backups, etc.)
    • Cybersecurity Software (Configuration Management, EDR, Antivirus, SIEM, NAC, PKI, etc.)
    • The Cloud (Definition, Service & Deployment Models, Benefits, Shared Responsibility, Cloud in ICS/OT)
  • General Overview of Defensible Architecture
    • Defense in Depth (Concept, Layers, Controls)
    • Zero Trust (Fundamentals, Control Plane, Core Principles, Key Technologies, Applying to ICS/OT)
  • Basic Elements of Incident Response
    • Cyber Incident Management Framework
    • Incident Response Communications
    • Cyber Incident Response Analysis
    • IR in Industrial Control Systems (Goals, Process Flow, Differences from IT)
  • ICS Tabletop Exercise

Instructor

Tung Nguyen

Director of Information Security

Denver Water

Tung Nguyen is the Director of Information Security at Denver Water, where he is responsible for developing and implementing comprehensive strategies to safeguard the utility’s critical information assets. With over 19 years of experience in information security, Tung specializes in threat and vulnerability management, incident response, and regulatory compliance.

Throughout his career, he has held key roles including Senior Security Engineer, Enterprise Security Architect, and IT Security Manager, across various sectors such as education and government. He holds multiple industry certifications, is a frequent speaker at cybersecurity conferences, and actively contributes to the professional community.

Tung earned a master’s degree in Cybersecurity from Colorado Technical University and a bachelor’s degree in Electrical and Computer Engineering from the University of Colorado Boulder.

Continuing Education Credits

IACET

AP_Logo

EUCI is accredited by the International Accreditors for Continuing Education and Training (IACET) and offers IACET CEUs for its learning events that comply with the ANSI/IACET Continuing Education and Training Standard. IACET is recognized internationally as a standard development organization and accrediting body that promotes quality of continuing education and training.

EUCI is authorized by IACET to offer 0.9 CEUs for this event

Verify our IACET accreditation

 

Who recognizes IACET Credits?

 

Requirements for Successful Completion of Program

Participants must log in each day and be in attendance for the entirety of the course to be eligible for continuing education credit.

 

Instructional Methods

PowerPoint presentations and open discussion and question and answer sessions

CPE

Upon successful completion of this event, program participants interested in receiving CPE credits will receive a certificate of completion.

Course CPE Credits: 10.5
There is no prerequisite for this Course.
Program field of study: Specialized Knowledge
Program Level: Basic
Delivery Method: Group Internet Based
Advanced Preparation: None

CpeEUCI is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website: www.nasbaregistry.org

CLE

Only registered attendees can request CLE credits for an EUCI course/event. Please email [email protected] prior to the course start date and list the state where you are licensed and your bar# as well as the name and date of your course/event in your request, and someone will be in contact.

Who Should Attend

This course is specifically designed for professionals across both Information Technology (IT) and Operational Technology (OT) within water and wastewater utilities who are responsible for operating, managing, designing, implementing, monitoring, and defending control systems. Participants will gain the essential skills and knowledge to strengthen their organization's cybersecurity posture.

This includes:

  • Organizational leaders in the water and wastewater industry, including directors, managers, and CxOs
  • Cybersecurity professionals and IT staff responsible for implementing security measures within water and wastewater utilities.
  • Operational Technology (OT) professionals responsible for the design, implementation, monitoring, defense, and maintenance of SCADA systems and other critical infrastructure.
  • Compliance officers and risk managers tasked with ensuring regulatory compliance and managing cybersecurity risks across both IT and OT environments.
  • Engineers and technicians responsible for maintaining the integrity and security of water and wastewater systems, with a focus on both IT and OT aspects of system defense.
  • Supply chain managers involved in procuring technology and equipment for water and wastewater utilities, with an emphasis on cybersecurity considerations for both IT and OT components.
  • Emergency response and crisis management teams responsible for developing and implementing emergency response plans that encompass cyber incidents impacting both IT and OT systems.
  • Professionals interested in learning about cybersecurity frameworks, incident management methods, and risk assessment approaches specific to the water and wastewater industry, bridging the gap between IT and OT security.
  • Anyone responsible for organizational culture and awareness training programs aimed at improving cybersecurity posture and resilience to cyberattacks within water and wastewater utilities, particularly as it relates to protecting both IT and OT environments.