in Up Front
print the content item

McLean, Va.-based business and technology solutions provider Booz Allen Hamilton is helping utilities comply with the North American Electric Reliability Corp. (NERC) Critical Infrastructure Protection (CIP) version 5 cybersecurity standards by offering some best practices.

Booz Allen suggests that utilities conduct a cybersecurity strategic simulation to identify security gaps, prioritize assets and determine areas for improvement. The company says the controlled environment of a simulation allows participants to safely explore real-world situations, resulting in improved communication, coordination and the identification of any gaps in existing response plans.

Utilities should also develop a strategic plan to manage future threats, as well as standards, Booz Allen recommends. Implementing best practices from the start, the firm reports, can serve as a footprint for success, allowing utilities to leverage existing investments in people, processes and technology that ultimately prevent them from overspending.

In addition, the company advises that utilities pursue a knowledge management system that will help ensure business continuity for today and the future. Booz Allen notes that the aging workforce presents a major industry challenge, as an exodus of institutional and technological knowledge could hamper a company's ability to continue its mission effectively. Consequently, it is important to establish a team that understands the regulatory environment, threats and overall enterprise.

Booz Allen proposes that utilities implement an internal program to address employee cyber "hygiene" and the potential for insider threats. The company adds that ultimately, all staff within an organization can pose as a cyber threat - either accidental or intentional. These challenges can no longer be the sole responsibility of information technology departments, and utilities should communicate to all employees the significance of being cyber-risk aware and knowing what to do when a concern arises.

Furthermore, the firm says that utilities should acknowledge and understand the difference between compliance and security. Keeping up with standards will help utilities avoid legal exposure, fines and the like, but Booz Allen contends that such activity does not necessarily make a utility more secure because there is no silver bullet formula for security. Rather, cybersecurity is intimately tied to a utility's business strategy and operations and must be customized to the organization.

"Utilities will continue to face the challenge of balancing strong cyber risk management and constantly evolving regulation," remarks David Cronin, principal at Booz Allen. "Going from NERC CIP version 3 to version 5 requires a partner that knows not only the rules, but just as an importantly, has deep industry experience to recognize the diverse needs of utility companies - all while minimizing cost and leveraging existing investments, where possible."

Hybrid Energy Innovations

Hybrid Energy Innovations 2015
Latest Top Stories

To Help Combat Costly Electricity Theft, Emerging Markets Turn To Smart Grid Infrastructure

According to a new report, the world loses a whopping $89.3 billion to electricity theft annually, and emerging country markets are feeling a majority of the pain.

Report: Utilities Face Big Revenue Cuts From Distributed Energy Resources

According to a new report from Accenture, the growth of solar and other resources, such as energy storage, could mean significant losses for utilities.

NextEra To Acquire Hawaiian Electric In $4.3 Billion Merger Deal

If approved, the agreement between the two energy companies would produce one of North America's largest renewable energy players.

EPA Racks Up Over 1.6 Million Comments On Carbon Pollution Plan

Months after the U.S. Environmental Protection Agency released its Clean Power Plan, which will create new regulations for existing power plants, the agency says it has received loads of feedback to consider.

Smart Grid Interest Continues To Spread Among U.S. Rural Utilities

A new survey gauges rural smart grid efforts across the country and offers key findings, one of which is that nearly all utilities polled are doing something to modernize their systems.

Hybrid Energy Innovations 2015