• As an outcome of the events of Sept. 11th, 2001, there has been an increased effort to protect critical infrastructures at the national, state and local levels. Since drinking water has been identified as one of these critical infrastructures it's no surprise that considerable attention is being focused on drinking water system security. Historically, emergency response planning and security have been an integral part of water system operations, with the primary focus on natural disasters, system malfunctions and vandalism. Today, however, intentional acts of sabotage and terrorism must also be thrown into the mix. Whether the threat is international or domestic, water systems must begin to look at the security of their systems and incorporate scenarios and remedial actions into their emergency response planning to reflect these new concerns.
• Drinking Water Program (DWP) has developed this site to assist water systems in understanding new regulations that may affect them and to centralize the growing body of information and resources available to assist them in staying current.
  

• State: DWP adopted new rules (i.e., OAR 333-061-0064) on Oct. 25th, 2002, requiring all public water systems to have a written emergency response plan which incorporates the results of a Security Vulnerability Assessment (SVA). For more details about the rules, click here. Requirements are listed below:
  
  
  • All community water systems with 3,300 or less population and all non-community water systems are required to develop and maintain a written Emergency Response Plan (ERP) that incorporates an SVA using, at a minimum, the State Model ERP (doc) and ASDWA/NRWA Security Vulnerability Self-Assessment Guide for Small Drinking Water Systems (pdf).
  • Small water systems serving 150 or fewer connections may instead use the Small System Vulnerability Assessment Emergency Response Plan Tool (doc). Other tools that may be used can be found under federal regulations section below.
  • Verification of completion must be provided to your local county health department by the deadline established in OAR 333-061-0064 (i.e., June 30th, 2005) using the ERP/VA Proof of Completion form (pdf), or as required by your the county. Note: Water systems in direct service counties must provide verification to the DWP.
  • To maintain water system confidentiality, ERPs and SVAs will not be kept on file by DWP or the counties.
    
• Federal: The Bioterrorism Act of 2002 requires all community water systems over 3,300 population to complete SVAs, and submit them directly to the U.S. Environmental Protection Agency (EPA). Do not submit them to DWP or to the counties. Within six months of the federal deadlines, these water systems must also develop or revise an existing ERP and incorporate the results of their SVAs. See Table 1 below for the submittal schedule:
  
  

Links below are sampling of available sites that provide news and information on water system and infrastructure security, risk management, and emergency preparedness

• U.S Department of Homeland Security: Homeland Security Advisory System
• Amercian Water Works Association: Chlorine Bomb Advisory
• Maplecroft: Global Water Security Risks
• SecurityInfoWatch
• Security World News
• Water Conserve: Security news, links and information
• Water Environment Federation: Water Security News
  

These are links to valuable resources that are available to assist public water systems in complying with Emergency Response Planning (ERP) and Security Vulnerability Assessment (SVA) issues.

• American Water Works Association: Several publications listed below.
  
  
  • Emergency Planning for Water Utilities
  • Guidelines for the Physical Security of Water Utilities: An American Society of Civil Engineers (ASCE)/AWWA Draft Standard for Trial Use
  • Security Planning and Partnership for Safe Water Online Courses
  • Water System Security: A Field Guide
    
• Association of State Drinking Water Administrators
• InfraGard: Goal is to promote ongoing dialogue and timely communication between its members and the Federal Bureau of Investigation (FBI) to protect national security-related assets and prevent and address terrorism and other crimes.
• Oregon Local County Emergency Manager (pdf)
• Oregon Water/Wastewater Angency Response Network (ORWARN)
• The Vulnerability Self Assessment Tool for Water and Wastewater Utilities (VSAT)
• U.S. Centers for Disease Control and Prevention: Drinking Water
• U.S. Department of Homeland Security: Water Sector
  
  
  • Federal Emergency Management Administration: Guidelines for Managing Water Supplies
  • Pandemic Influenza (Guide for Critical Infrastructure and Key Resources (pdf)
    
• U.S. Environmental Protection Agency: Water Security
  
  
  • Emergency/Incident Planning
  • Emergency Response Plan Guidance for Small and Medium Community Water Systems (pdf)
  • Water Sector Incident Command System (ICS) and National Incident Management System (NIMS) Training Materials.
    
• Water Information Sharing and Analysis Center (WaterISAC): Mission is to keep drinking water and wastewater utility managers informed about potential risks to the nation's water infrastructure from contamination, terrorism and cyber threats. The mission also includes providing help utilities in response and recovery from all hazards.