Canadian Water and Wastewater Association eBulletin
Archive/Subscribe | www.cwwa.ca  
   
December 27, 2013
 
 

CWWA Security and Emergency Management Committee — Membership Update on Cyber Security by Neil E.Thomas, P.Eng, 2013 CWWA President

Print Print this Article | Send to Colleague

In conjunction with the 2013 CWWA Window on Ottawa, the CWWA Security and Emergency Management Committee conducted a day workshop on cyber security and emergency planning on November 27, 2013.
Presenters included Public Safety Canada, RCMP, Canadian Security Intelligence Service, Halifax Water, City of Calgary, Canadian Cyber Security Incident Centre, V2PM Inc, and Microsoft Canada.

This CWWA notification has been developed to provide cyber security contact and resource information.

The Committee Chairman is Pat Bellemare and he can reached at:

Pat Bellemare
Halifax Water
Manager, Safety and Security
T: 902- 441-1067
Patb@halifaxwater.ca

Cyber Security and Awareness Contacts

Public Safety Canada – Physical Infrastructure Protection
Claudia Zuccolo
Senior Policy Analyst
Critical Infrastructure and Strategic Coordination
T: 613-991-7773
Claudia.Zuccolo@ps-sp.gc.ca
http://www.publicsafety.gc.ca/

Public Safety Canada – Know and Understand Risks Related to Cyber Security
Lori Goodyear
Director of Engagement and Partnerships
Engagement and Partnerships Division
T:  613-990-2655
Lori.Goodyear@ps-sp.gc.ca
http://www.getcybersafe.gc.ca/

Halifax Water – Safety and Security
Pat Bellemare
Halifax Water
Manager, Safety and Security
T: 902-441-1067
Patb@halifaxwater.ca
www.halifax.ca/hrwc/

Canadian Cyber Security Incident Centre – Provincial, Municipal and Private Sector Cyber Systems Security

Kenneth Bendelier
Cyber Support Officer
National Cyber Security Directorate
T: 613-993-5042
Kenneth.Bendelier@ps-sp.gc.ca
cyber-incident@ps-sp.gc.ca
www.publicsafety.gc.ca/

Frank Turbide
Technical Analyst
National Cyber Security Directorate
T: 613-991-7751
Frank.Turbide@ps-sp.gc.ca
cyber-incident@ps-sp.gc.ca
www.publicsafety.gc.ca/

V2PM Inc,
Mel Gedruj
Facility Risk Advisor
Security and Project Planning
T: 905-331-1145 # 221
melg@v2pm.com

Microsoft Canada
John Weigelt
National Technology Officer
T : 613-940-3337
John.Weigelt@microsoft.com
www.microsoft.com/

Security Intelligence Report (SiR) v15 published on-line twice annually, also register your computer for security updates and patches   

RCMP – Cyber Crime Threats (criminal activity)
Sgt. Tim Cooke – technical investigative services
T: 613-990-8348
Tim.cooke@rcmp-grc.gc.a

Additional Highlights
March 2014 Cyber Security training Halifax, Nova Scotia
USA Department of Homeland Security reference web site:  www.dhs.gov/topic/cybersecurity

Cyber Security Do’s and Don’ts for Work and Home

Computers, tablets, phones, SCADA systems are all vulnerable.

As mainstream computer operating software providers "harden" their products against attack, malicious computer code is being introduced into alternate forms of electronic communication such as alternate devices and digital music, on-line gaming, fake web sites, and email file attachments.

Malicious software – cyber attacks are increasingly sophisticated and being generated by state sponsored computer specialists or organized crime computer specialists.

Do’s

  • Upgrade – keep up to date with security patch software from Microsoft
  • Work place must have a Cyber policy and response plan
  • Identify what SCADA based water and sewer equipment can be operated without automation
  • Establish a water and sewer section IT Division to take ownership of SCADA control systems
  • Upgrade Windows operating system as Windows XP no longer supported after April 8, 2014
  • Add additional security features on computer beyond basic inherent features
  • Type in web link addresses
  • Anti-virus/malware protection is required on all devices (i.e. computer, cell phone, tablets, etc.)
  • Report suspicious computer activity to Public Safety Canada (contact name, phone required)
  • Change factory set passwords on new computerized equipment – software
  • Change personal passwords and use a mixture of character types

Don’ts

  • Do not post personal information on social web sites 
  • Do not open/respond to emails containing an offer of free products 
  • Do not open emails containing unrecognized names or topics
  • Do not allow unsecure – unencrypted flash drives to carry information in-out of your company or water utility.
  • Do not purchase software products or services from companies originating outside of North America – Western Europe
  • Do not use out of date or older software
 

Back to Canadian Water and Wastewater Association eBulletin

Share Share on Facebook Share on Twitter Share on LinkedIn