cybersecurity

At the Edison Electric Institute (EEI) annual meeting this week in Las Vegas, the tone was one of collaboration with partners from Washington to distributed generation companies. Those partnerships will be needed as the investor-owned utility (IOU) industry fights not so much a war on coal as a war for mindshare and wallet share in […]

Generators of electric power face a big effort to comply with the upcoming North American Electric Reliability Corp. Critical Infrastructure Protection (NERC CIP) Version 5 (V5) cybersecurity standards

For the first time ever, the U.S. has filed criminal charges against known state actors for hacking U.S. interests. A grand jury in the Western District of Pennsylvania indicted five Chinese military hackers for computer hacking, economic espionage, and other offenses directed at six American victims in the U.S. nuclear power, metals, and solar products […]

Of 257 cyber incidents reported by asset owners or trusted partners to the Department of Homeland Security’s Industrial Control Systems Cyber Emergency Response Team (ICS-CERT) in 2013, an overwhelming 56% occurred in the energy sector, exceeding all incidents reported in other sectors combined.  Notably, ICS-CERT last year responded to a “major cyber intrusion campaign” from […]

The National Institute of Standards and Technology (NIST) today released its final version of a national framework for improving critical infrastructure cybersecurity. The “living” document will be updated as industry reports back on its implementation. The “Framework for Improving Critical Infrastructure Cybersecurity” is essentially composed of a core, tiers, and profiles. The core presents five […]

A year ago, on Feb. 12, 2013, President Obama issued Executive Order 13636, titled “Improving Critical Infrastructure Cybersecurity.” The Executive Order instructed the National Institute of Standards and

Cybersecurity has become a topic of interest over the past year in generation, owing to new developments in North American Electric Reliability Corp. Critical Infrastructure Protection (NERC CIP) regulations

About $30 million will be spent on the development of new tools and technologies to strengthen protection of the nation’s electric grid and oil and gas infrastructure from cyber attack, the Department of Energy (DOE) announced today. The funds will go to 11 projects undertaken by energy sector organizations in California, Georgia, New Jersey, North […]

“One company’s [NERC CIP] violation can be another company’s lesson learned.” That was just one of the comments during opening presentations at the EnergySec Summit in Denver this week that focused on the fact that human behavioral change is as important as advanced technology solutions for securing the North American electricity system—and energy systems globally. […]

A discussion draft of a preliminary cybersecurity framework posted by the National Institute of Standards and Technology (NIST) last week outlines several functions to protect industrial control systems, but it acknowledges that the power sector already engages in several cybersecurity practices and recommends that utilities opting to use the framework should leverage these rather than […]

Cybersecurity awareness and best practices are increasingly central to the power generation, transmission, and distribution industry. Industrial cybersecurity concerns, recently heightened by awareness of how

Perhaps because the public has been more obsessed in recent years by cybersecurity breaches involving everything from social media accounts to classified military secrets, the amount of attention given to the

A recently published standard has been adopted globally to address risks arising from the use of business information technology (IT) cybersecurity solutions to address industrial automation and control systems (IACS) cybersecurity in complex and dangerous manufacturing and processing applications. The ISA-62443 series of standards, being developed by the ISA99 committee of the International Society of […]