Substation attacks may lead to new energy security rules in USA
While physical attacks may have grabbed headlines, the cyber threat is growing, and the rise of distributed energy resources creates a larger attack surface.
Image source: Utility Dive
USA, Washington D.C.: While physical attacks may have grabbed headlines, the cyber threat is growing, and the rise of distributed energy resources creates a larger attack surface.
Thus, the Federal Energy Regulatory Commission is considering developing new cybersecurity rules for DERs on the bulk electric system, and the US Department of Energy is funding “next generation” cybersecurity research, development and demonstration projects.
Thomas Pace, CEO and co-founder of NetRise, said he expects more focus on software security in the coming year. That could include the potential for a software bill of materials, or SBOM, to be required for some vendors of some energy or grid-related services. The requirements would likely be “very prescriptive,” he said.
“Cyber risks that impact operations will continue to gain attention from utility leaders, especially if the Securities and Exchange Commission finalizes new rules on cybersecurity risk and incident disclosure that would impact investor-owned utilities,” said Jason Christopher, director of cyber risk at Dragos, in a statement.
Source: Utility Dive
#cybersecurity#distributed energy resources#new rules#US Department of Energy#USA