top of page
Image (2).png

America’s Water Infrastructure Act (AWIA) Risk and Resilience Assessment

Serving large communities comes with a never-ending list of challenges, compliance being a core obstacle for many organizations. On October 23, 2018, America’s Water Infrastructure Act (AWIA) was added to the mix, mandating water systems serving more than 3,300 people conduct risk and resilience assessments and develop or update emergency response plans (or potentially face a penalty of up to $25,000 per day for non-compliance).

How We Can Help

For many organizations, compliance means pressure— in the form of deadlines, penalties, and reputational risk associated with noncompliance. Securance is committed to helping water utilities hurdle these obstacles with ease.

We are experts in all of AWIA’s cybersecurity requirements, and in the IT and operational technology (OT) systems water utilities depend on to deliver critical services. Your final report will not only help you achieve compliance, but will also set you on the path to truly secure cyber infrastructure.

Our risk and resilience assessment service includes:

Security Controls Review

We review the design and operating effectiveness of security controls across the technology environment, then perform a gap analysis against NIST standards, including the Cybersecurity Framework (CSF) and Special Publications (SP) 800-53 and 800-82.

Technical Security Testing

We conduct vulnerability and penetration tests of external and internal networks and applications, as well as detailed configuration reviews of firewalls, network devices, and operating systems.

Operational Technology (OT) Assessment

We review the security posture of the operational technology (OT) environment, including industrial control systems (ICS), distributed control systems (DCS), supervisory control and data acquisition (SCADA) systems, and advanced metering infrastructure (AMI).

Emergency Response Plan (ERP)

We review and, as necessary, update the ERP, including disaster recovery and incident response components.

To learn more about our services and start your journey towards AWIA compliance, contact us today.


Executive-level consultants provide hands-on leadership to ensure every project is a success.

Senior resources with 20 or more years of experience don’t just lead engagements; they execute them from cradle to grave.

Icon (4).png

We speak two languages, business and IT, and use our fluency to translate technical findings into business risks.

Our reports and recommendations are in plain English, not IT jargon, that all stakeholders can understand and appreciate.

Icon (5).png

Securance is the only IT security firm that uses artificial intelligence to enhance its approach to identifying risks and vulnerabilities.

Our proprietary AI technology predicts security and control failures, compliance gaps, and even data breaches.

Icon (6).png
bottom of page