Cybersecurity Services

Xylem’s Cyber Diamond Approach to Product Security

cyber diamond - white.jpg


Cybersecurity is the protection of a computer system and networks from disruption, manipulation, theft, or damage of the services they provide. Cybersecurity as a Service is an outsourced data and network protection system that lowers security costs and reduces risk by leveraging external expertise.






  • Secure products during engineering
  • Secure deployments with defense-in-depth that manages risks to the operations of systems and products
  • Continuous health and monitoring against emerging vulnerabilities and threats
  • Incident Response for safe and resilient operations


Why is cybersecurity important to water?

  • Over $1 Trillion USD / 950 Billion € global losses due to cybercrime in 2020, more than a 50% increase since 2018. Avg. cost per incident is over $500 K USD / 477 €.
  • 150 Vulnerable Products​ used in water and wastewater systems​
  • 3rd Most Targeted Sector​ when compared to other critical infrastructure​
  • Number of Threat Actors Increasing​: 7 threat actors shown to specifically target water and wastewater infrastructure globally ​
  • 20,000 Utility Employees​ say cyber threats are what they fear could have the biggest impact on operations​
  • $18.2 Million USD / 17.5 Million € costs incurred due to a 2019 ransomware attack against a water utility in Maryland, US​

Please see Cybersecurity Assessment Services flyer for sources.


Cybersecurity Assessment Services

Xylem CyberSecurity flyer 12-21_thumbnail.jpg

Xylem’s Cybersecurity Assessments provide the confidence for secure digital transformation. We offer multiple types of affordable expert analyses of Operational Technology systems, with actionable remediation recommendations.

Download the Cybersecurity Assessment Services flyer.







Architecture Review

Architecture review flyer 6-8-22_thumbnail.jpg

Xylem's Architecture Review evaluates existing system data flows against typical threat susceptibilities and confirms adequate defense-in-depth controls and comprehensive safeguards are in place. This process is engaging and educational for the system owner/operator, and results in actionable outcomes. This is related to data flows.

Download the Architecture Review flyer.







Dragos Incident Response


Our partner, Dragos’ Incident Response (IR) Service helps organizations in the water sector prepare for, respond to, and recover from cyber incidents in industrial environments. IR plans are based on  prepaid  retainer hours with specific response time service level agreement (SLA) commitments.

Download the Dragos IRR Datasheet.