March 19, 2026 Washington D.C.

Cyber Safety Summit

Establishing A Cyber Safety Standard of Care for the Built Environment

A select gathering of academia, professional organizations, infrastructure owners, and the Nation’s leading companies providing engineering and cybersecurity services committed to protecting human safety in an automated society.

March 19, 2026

National Academy of Sciences Washington DC

A Call to Action – Emerging Global Need for a Cyber Safety Standard of Care

The rapid adoption of connected technologies in facilities and infrastructure improves owner efficiencies, occupant experiences, sustainability, and security- from homes and buildings to consumer devices, transportation, healthcare, and manufacturing sectors. While the convergence of information technologies (IT) and operational technologies (OT) into Cyber-Physical systems (CPS) can offer unprecedented efficiencies and productivity, the reliance on automation also offers cyber bad actors new vectors to directly threaten public life/safety/health.

Cyber attacks to national critical infrastructure sectors (water, power grids, ports, pipelines, and transportation systems), have resulted in numerous federal warnings to private owners of the need to invest in protections for the general public. The global engineering and construction community must take action now to establish Standards of Care for cyber safety, and to offer owners cyber risk mitigation principles in the planning, design, construction, and operation of any project in the built environment.

This Cyber Safety Summit will bring together experts to develop standards for the reasonable learning, technical skill, and care possessed and practiced by cyber security and/or controls engineers. Participants will break out into working groups to propose internship, due examination, and admission requirements for a professional license to practice cyber safety design. The Summit is also intended to propose updated NCEES Principles and Practice of Engineering Examination CONTROL SYSTEMS CBT Specifications incorporating cyber safety Standards of Care for network and control system engineering. Finally, experts will review selected technical papers proposing engineering applications and best practices for engineers and designers to enhance cyber safety.

Event Sponsors

The Summit is seeking corporate sponsors to help ensure participants can attend the event at no cost. If you are interested in supporting this initiative through a donation or by sponsoring specific event costs, please contact Lucian@buildingcybersecurity.org.

Sponsorship opportunities include covering morning coffee, a catered lunch, and the evening reception. Your organization will receive formal recognition during each sponsored event.

Summit Agenda

Join a day of collaboration on cyber safety standards for the engineering, construction and facility management professionals.

March 19, 2026

7:30-8:00

Registration opens

8:00-8:30

Welcome by National Academy of Engineering –Recognition of Sponsors

8:30-9:00

National Threat Intelligence Presentation

9:00-10:00

Panel Federal Agencies (Office of National Cyber Director, CISA, DOE, NSC) on Federal programs and perspectives for the cyber defense of critical infrastructure.

Stay tuned for panelist announcements

10:00-10:15

Networking Break

10:15-11:15

Panel – National Asset Owners on Programs to Protect Operational Technologies

Stay tuned for panelist announcements

11:15-12:15

Panel – National AE Firms on Cyber Safety Engineering Capabilities

Stay tuned for panelist announcements

12:15-1:15

Lunch (Sponsorship Opportunity)

1:15-2:00

Moderated Town Hall – What is needed for a Cyber Safety Standard of Care?

2:00-2:30

First Academic White Paper Presentation by invite (as selected by executive committee)

2:30-3:00

Second Academic White Paper Presentation
(as selected by executive committee)

3:00-3:30

Networking Break

2:30-3:00

Third Academic White Paper Presentation
(as selected by executive committee)

4:00-5:30

Break-out sessions for facilitated action group formation

  1. Defining Cyber Safety in the built environment
  2. Developing standards for the reasonable care in Cyber Safety
  3. Proposing requirements for a professional license to practice Cyber Safety
  4. Recommending updates to engineering examinations
  5. Proposing engineering applications and best practices to enhance cyber safety in engineering and construction.

5:30-6:00

Town Hall, Wrap Up, and Next Actions

6:00-7:00

Reception

Request an Invitation

Given the seating constraints of the venue, Summit participants will be notified by Jan 15, 2026, regarding in-person attendance at the event. There will not be a virtual option at this time.

Participation at the Summit is free.

Call for Papers

Interested parties are invited to submit technical papers for review by the Cyber Safety Summit

Executive Board by January 15, 2026. on the following subjects. 3 papers will be selected for 30 minute in-person presentations on the afternoon of the Summit.

  • Defining Cyber Safety in the built environment

  • Developing standards for the reasonable care in Cyber Safety

  • Proposing requirements for a professional license to practice Cyber Safety

  • Recommending updates to engineering examinations

  • Proposing engineering applications and best practices to enhance cyber safety in engineering and
    construction.

Guidance for Papers

  • 1

    Please limit length to no more than 5 pages, excluding executive summary

  • 2

    Papers will be selected based on quality of contribution to one of the subjects

  • 3

    Summit Organizers acknowledge the intellectual property of the authors – all papers will be protected
    from mass distribution unless otherwise agreed to by the author

Please submit papers to the following email address: Lucian@buildingcybersecurity.org

Mission

Join a day of collaboration on cyber safety standards for the engineering, construction and facility management professionals.

  • 1

    The A/E/C industry across all infrastructure sectors incorporate cyber safety practices into their body of knowledge, including engineering minimum requirements and specifications, for infrastructure systems that incorporate digital controls.

  • 2

    Engineers and technicians fully evaluate the potential for disruption and harm from cyber attacks when designing and integrating digital components into systems.

  • 3

    Control systems are chosen and integrated into physical systems only when an assessment of human safety risks has been completed, and the organization accepts any residual risk after being accurately informed of potential consequences.

  • 4

    Effective and continuing communication is established among owners, operators, designers, maintainers, device manufacturers, and system integrators to support risk-informed decisions concerning the use of control systems in critical infrastructure during the design and construction phase.

  • 5

    Future automation and connected technologies are designed and certified to be cyber resilient.

  • 6

    Cyber risk management early in the system lifecycle results in a more effective and efficient application of cybersecurity controls during design and construction, and enables resilient operation of critical functions over the life cycle of a facility or system.

  • 7

    The broad range of stakeholders responsible for critical infrastructure are appropriately informed about cyber risks and have a culture of accountability for cyber safety.

  • 8

    Engineered systems are more cost-effective to operate securely over their life cycle, and security controls are more effective because they were built in at the design phase.