Reconfiguring Governance: How cyber security regulations are reconfiguring water governance

Ola Michalec; Sveta Milyaeva; Awais Rashid

doi:10.1111/rego.12423

Reconfiguring Governance: How cyber security regulations are reconfiguring water governance

Ola Michalec^*, Sveta Milyaeva, Awais Rashid

^*Corresponding author for this work

Research output: Contribution to journal › Article (Academic Journal) › peer-review

2 Citations (Scopus)

28 Downloads (Pure)

Abstract

Developments in improved monitoring, asset management and resource efficiencies led to the water industry promising a step-change in the design and operation of these facilities: the “blending” of traditional engineering equipment with digital technologies. These apparent benefits inevitably produce new challenges of regulating an emerging techno-political landscape. One of the regulations is Europe’s Network and Information Systems Security Directive which aims to improve cyber security across critical infrastructure providers. This paper focuses on the implementation of NIS in the context of the water sector in England. At the national and supranational levels, NIS acts as a boundary object that gathers diverse communities of practice without the need to establish common goals. Further, in the process of transposing the Directive into the sectoral context, NIS requires interpretation by expert communities. We show how translating the regulatory scope to the sectoral landscape involves prioritizing some water governance goals over others. As diverse expert communities converge in their collaboration practices, their priorities align or stand in tension with public interests. We argue that cyber security regulations have potential to reconfigure water governance by refocusing strategic priorities away from traditional concerns of environmental governance. We suggest ways to maintain diverse collaborations across engineering, computing and water expertise that NIS implementation remains aligned with the goals of water governance.

Original language	English
Number of pages	18
Journal	Regulation and Governance
Early online date	30 Jun 2021
DOIs	https://doi.org/10.1111/rego.12423
Publication status	E-pub ahead of print - 30 Jun 2021

Bibliographical note

Funding Information:
The authors thank their participants for sharing the insights and inviting them to their professional events. The authors disclosed receipt of the following financial support for the research and/or authorship of this article: This research is supported by the Research Institute in Trustworthy Inter‐connected Cyber‐physical Systems (RITICS); project title: “How many shades of NIS? Understanding Organizational Cybersecurity Cultures and Sectoral Differences”. RITICS is funded by the National Cyber Security Centre.

Publisher Copyright:
© 2021 The Authors. Regulation & Governance published by John Wiley & Sons Australia, Ltd.

Keywords

critical infrastructure
cyber security
expertise
regulation
science and technology studies

Access to Document

10.1111/rego.12423

Full-text PDF (final published version)
This is the final published version of the article (version of record). It first appeared online via Wiley at https://doi.org/10.1111/rego.12423. Please refer to any applicable terms of use of the publisher.
Final published version, 391 KBLicence: CC BY

Handle.net

Persistent link

Embargoed Document

Full-text PDF (author’s accepted manuscript)
Accepted author manuscript, 407 KB
Request copy

Cite this

@article{728380d2caf94b9d874310cf0d712630,

title = "Reconfiguring Governance: How cyber security regulations are reconfiguring water governance",

abstract = "Developments in improved monitoring, asset management and resource efficiencies led to the water industry promising a step-change in the design and operation of these facilities: the “blending” of traditional engineering equipment with digital technologies. These apparent benefits inevitably produce new challenges of regulating an emerging techno-political landscape. One of the regulations is Europe{\textquoteright}s Network and Information Systems Security Directive which aims to improve cyber security across critical infrastructure providers. This paper focuses on the implementation of NIS in the context of the water sector in England. At the national and supranational levels, NIS acts as a boundary object that gathers diverse communities of practice without the need to establish common goals. Further, in the process of transposing the Directive into the sectoral context, NIS requires interpretation by expert communities. We show how translating the regulatory scope to the sectoral landscape involves prioritizing some water governance goals over others. As diverse expert communities converge in their collaboration practices, their priorities align or stand in tension with public interests. We argue that cyber security regulations have potential to reconfigure water governance by refocusing strategic priorities away from traditional concerns of environmental governance. We suggest ways to maintain diverse collaborations across engineering, computing and water expertise that NIS implementation remains aligned with the goals of water governance.",

keywords = "critical infrastructure, cyber security, expertise, regulation, science and technology studies",

author = "Ola Michalec and Sveta Milyaeva and Awais Rashid",

note = "Funding Information: The authors thank their participants for sharing the insights and inviting them to their professional events. The authors disclosed receipt of the following financial support for the research and/or authorship of this article: This research is supported by the Research Institute in Trustworthy Inter‐connected Cyber‐physical Systems (RITICS); project title: “How many shades of NIS? Understanding Organizational Cybersecurity Cultures and Sectoral Differences”. RITICS is funded by the National Cyber Security Centre. Publisher Copyright: {\textcopyright} 2021 The Authors. Regulation & Governance published by John Wiley & Sons Australia, Ltd.",

year = "2021",

month = jun,

day = "30",

doi = "10.1111/rego.12423",

language = "English",

journal = "Regulation and Governance",

issn = "1748-5983",

publisher = "Wiley-Blackwell",

}

TY - JOUR

T1 - Reconfiguring Governance

T2 - How cyber security regulations are reconfiguring water governance

AU - Michalec, Ola

AU - Milyaeva, Sveta

AU - Rashid, Awais

N1 - Funding Information: The authors thank their participants for sharing the insights and inviting them to their professional events. The authors disclosed receipt of the following financial support for the research and/or authorship of this article: This research is supported by the Research Institute in Trustworthy Inter‐connected Cyber‐physical Systems (RITICS); project title: “How many shades of NIS? Understanding Organizational Cybersecurity Cultures and Sectoral Differences”. RITICS is funded by the National Cyber Security Centre. Publisher Copyright: © 2021 The Authors. Regulation & Governance published by John Wiley & Sons Australia, Ltd.

PY - 2021/6/30

Y1 - 2021/6/30

N2 - Developments in improved monitoring, asset management and resource efficiencies led to the water industry promising a step-change in the design and operation of these facilities: the “blending” of traditional engineering equipment with digital technologies. These apparent benefits inevitably produce new challenges of regulating an emerging techno-political landscape. One of the regulations is Europe’s Network and Information Systems Security Directive which aims to improve cyber security across critical infrastructure providers. This paper focuses on the implementation of NIS in the context of the water sector in England. At the national and supranational levels, NIS acts as a boundary object that gathers diverse communities of practice without the need to establish common goals. Further, in the process of transposing the Directive into the sectoral context, NIS requires interpretation by expert communities. We show how translating the regulatory scope to the sectoral landscape involves prioritizing some water governance goals over others. As diverse expert communities converge in their collaboration practices, their priorities align or stand in tension with public interests. We argue that cyber security regulations have potential to reconfigure water governance by refocusing strategic priorities away from traditional concerns of environmental governance. We suggest ways to maintain diverse collaborations across engineering, computing and water expertise that NIS implementation remains aligned with the goals of water governance.

AB - Developments in improved monitoring, asset management and resource efficiencies led to the water industry promising a step-change in the design and operation of these facilities: the “blending” of traditional engineering equipment with digital technologies. These apparent benefits inevitably produce new challenges of regulating an emerging techno-political landscape. One of the regulations is Europe’s Network and Information Systems Security Directive which aims to improve cyber security across critical infrastructure providers. This paper focuses on the implementation of NIS in the context of the water sector in England. At the national and supranational levels, NIS acts as a boundary object that gathers diverse communities of practice without the need to establish common goals. Further, in the process of transposing the Directive into the sectoral context, NIS requires interpretation by expert communities. We show how translating the regulatory scope to the sectoral landscape involves prioritizing some water governance goals over others. As diverse expert communities converge in their collaboration practices, their priorities align or stand in tension with public interests. We argue that cyber security regulations have potential to reconfigure water governance by refocusing strategic priorities away from traditional concerns of environmental governance. We suggest ways to maintain diverse collaborations across engineering, computing and water expertise that NIS implementation remains aligned with the goals of water governance.

KW - critical infrastructure

KW - cyber security

KW - expertise

KW - regulation

KW - science and technology studies

U2 - 10.1111/rego.12423

DO - 10.1111/rego.12423

M3 - Article (Academic Journal)

AN - SCOPUS:85108965453

JO - Regulation and Governance

JF - Regulation and Governance

SN - 1748-5983

ER -

Reconfiguring Governance: How cyber security regulations are reconfiguring water governance

Abstract

Bibliographical note

Keywords

Access to Document

Handle.net

Embargoed Document

Fingerprint

Cite this