Best Practices for Utility Cybersecurity

In a new white paper, Navigant outlines how to protect critical infrastructure and ensure compliance with standards

Just as utilities must work to keep pace with the energy transformation, they must also make sure they’re up to speed on protecting the security of their critical infrastructure.

In a new white paper, Doug Morrill, associate director at Navigant, and Sam Crawford, managing consultant at Navigant, offer guidance on the cybersecurity challenges utilities are likely to experience, as well as best practices for protecting critical infrastructure and ensuring compliance with cybersecurity standards and requirements.

Geared toward network engineers, cybersecurity professionals, cybersecurity program managers, and others active in the industry, the white paper focuses on the three main elements of modern cybersecurity, including:

  • Frameworks
  • Controls
  • Management/audit programs

This triad of protection is essential, according to Morrill and Crawford, who say that in a time when electric utilities are developing more interconnected systems to make the grid smarter, more efficient, and more versatile, they are also introducing more cybersecurity vulnerabilities.

“Effective utility cybersecurity requires not only strong technical controls—software and hardware components used to prevent, detect, and address cyber-attacks—but also effective cybersecurity management practices,” according to the white paper. “While cybersecurity controls have become increasingly advanced, hackers continue to find new exploits and strategies to circumvent these controls, which requires that utilities continuously monitor and improve their controls.”

Read Full White Paper
Back to top