You may also be interested in
One of the five largest water utilities in the United States delivers clean drinking water and wastewater treatment services to millions of residents and businesses. With six widely distributed facilities—including one of the world’s largest wastewater treatment plants—the utility provides essential services that support public health, economic growth, and environmental sustainability.
- Needed to assess cyber risks across six distributed sites.
- Faced a short timeline to evaluate IT and OT assets with multiple layers of segmentation.
- Sought detailed visibility to meet regulatory requirements and provide board-level oversight of industrial control system risks.
- Deployed SecureOT™ Platform and industrial protection services for a rapid, technology-enabled vulnerability assessment.
- Connected all sites and subnets within one week using an agent-agentless architecture to gather a complete asset inventory.
- Used detailed asset data and proprietary risk scoring to produce a prioritized remediation roadmap integrated within SecureOT Platform.
- Completed comprehensive vulnerability assessment across sites in less than 30 days at the cost of a single-site manual assessment.
- Delivered a clear remediation roadmap that enabled immediate board-level reporting on identified security gaps.
- Established continuous, real-time visibility into cyber risks with ongoing monitoring through SecureOT platform.
Challenge
One of the largest water utilities in the United States operated six geographically dispersed facilities. The organization needed to assess cyber risks across its industrial control systems to maintain regulatory compliance and help safeguard essential services for millions of people.
Faced Short Timelines and Lack of Visibility
The utility faced a narrow window to complete its risk assessment. The project had to include both IT and OT assets spanning multiple layers of network segmentation and protection. Leaders also required a detailed view of vulnerabilities to present to the board of directors—reflecting the growing urgency of industrial cybersecurity.
In addition, the utility needed a fast, dependable way to uncover risks across its environment and generate actionable insights. Traditional, manual assessments were too slow and costly to deliver the visibility and prioritization the organization needed.
Solution
To help meet the utility’s needs, we deployed SecureOT Platform alongside the industrial protection services to deliver a rapid, closed-loop vulnerability assessment. The solution was installed inside the client’s DMZ, which enabled secure access to asset inventory, vulnerability management, and patch management capabilities.
Gained Visibility and Turned Data Into Action
SecureOT Platform’s agent-agentless architecture connected to all sites and subnets across the utility’s network. In turn, this provided a comprehensive inventory of IT and OT assets—including programmable logic controllers (PLCs), backplanes, and downstream devices. The platform also gathered information on:
- Software
- Patch status
- Vulnerabilities
- Accounts
- Ports
- Services
- Configurations
Using this visibility, cybersecurity specialists applied our proprietary risk scoring in combination with the client’s Process Hazard Analysis to rank vulnerabilities by criticality. This approach produced a prioritized remediation roadmap that integrated directly into SecureOT Platform and enabled the client to take immediate steps toward reducing risk.
Result
Faster, Cost-Effective Assessment
The utility completed a comprehensive, technology-enabled vulnerability assessment across six sites in less than one month. The project was delivered at roughly the same cost of a single-site manual assessment—which reduced both time and labor requirements while expanding coverage across the enterprise.
Delivered Actionable Insights With Ongoing Visibility
Within 30 days, the utility received a detailed remediation roadmap tied to its asset criticality and risk profile. This enabled immediate reporting to the board of directors and provided measurable evidence of progress against identified security gaps.
With the ongoing presence of SecureOT Platform, the utility can continuously track progress, monitor new risks in real time, and maintain visibility into IT and OT assets for long-term resilience.
Published April 21, 2026