State Water Resources Control Board
HIGH RISK Classification
January 24, 2026
Prepared for Executive Leadership
Claude Code CAN be deployed safely at SWRCB, but requires careful, phased implementation with appropriate controls.
An AI-powered coding assistant that helps developers write, review, and debug code.
Important: Because Claude Code can execute commands and access files, it requires security controls appropriate to its access level.
| Factor | Implication |
|---|---|
| Water Rights & Permits | Decisions directly affect Californians' access to resources |
| Critical Infrastructure | Heightened security requirements for water systems |
| Infrastructure/DevOps Access | AI with system-level access requires strictest controls |
| Benefits/Services Systems | Permit and compliance systems affect public welfare |
Source: CDT GenAI Guidelines (July 2024)
| Requirement | Source | Status |
|---|---|---|
| CDT consultation before procurement | Technology Letter 24-01 | Required |
| GenAI Risk Assessment (SIMM 5305-F) | CDT SIMM | Required |
| Data must stay in Continental US | SAM 4983.1 | Verify |
| High-risk AI inventory reporting | AB 302 | Required |
| Privacy Impact Assessment | CCPA Regulations | Required |
| Equity Impact Assessment | CDT Guidelines | Required |
Network monitoring cannot distinguish human actions from AI-initiated actions.
Claude Code supports OpenTelemetry logging that tags all AI actions with:
Combined with network logs = complete attribution.
Architecture: Claude Code → OpenTelemetry → State SIEM (Splunk/Elastic) → Security Dashboard → Alert Rules
| Certification | Status | Source |
|---|---|---|
| SOC 2 Type II | Verified | Trust Center |
| ISO 27001:2022 | Verified | Privacy Center |
| Data NOT used for training | Verified (commercial) | Data Usage Policy |
| SSO/SAML support | Available | Security Docs |
| Zero Data Retention option | Available | ZDR Info |
Must verify before contract: Data center locations (must be Continental US per SAM 4983.1)
Answer prerequisite questions, schedule CDT consultation
CDT consultation, assessments, procurement
SSO, logging, permissions, monitoring
Internal systems only (10-15 developers)
Add public websites
DevOps (read-only)
Only after 6+ months proven safety
Total: ~8-9 months to full deployment — This timeline reflects the HIGH RISK classification.
| Item | Estimate | Notes |
|---|---|---|
| Claude Code Enterprise | ~$20/user/month | Verify with Anthropic Sales |
| SIEM (if not existing) | Varies | May use CDT shared service |
| Training development | Staff time | 4 modules required |
| External security audit | $15-50K | Annual requirement |
Budget Consideration: Pilot phase (10-15 users) would cost approximately $200-300/month plus staff time for training and setup.
| Risk | Mitigation |
|---|---|
| Data exposure | Permission restrictions block sensitive file access |
| Unattributed actions | OpenTelemetry logging tags all AI activity |
| Malicious code | Mandatory human code review before deployment |
| Compliance violation | Phased rollout with gates at each stage |
| Shadow AI | Formal program reduces unauthorized tool use |
Claude Code can be configured to block dangerous commands:
Source: Claude Code Settings
| # | Action | Owner |
|---|---|---|
| 1 | Confirm SIEM availability | IT Security |
| 2 | Identify executive sponsor | Leadership |
| 3 | Schedule CDT consultation | CIO |
| 4 | Review budget | Finance |
| 5 | Identify pilot developers (10-15) | Department leads |
Critical: CDT consultation is mandatory for HIGH RISK classification. No procurement can proceed until this is completed.
Recommendation: Approve proceeding to Phase 0 Discovery. This allows SWRCB to gather information and consult with CDT before making any financial commitments.
Complete 10-section plan with all technical details, compliance citations, and implementation checklists:
All regulatory claims hyperlinked to official sources. See Appendix D in the full plan for complete reference list.
All sources verified January 24, 2026. Links should be re-verified before presenting to executives.