Blogging the Grid

Smart grid security is no day at the beach (which is why breach practice makes sense)

Jul 19, 2012

Talk Back

Free Alerts

More On This Topic

By Andy Bochman

Smart grid, smart grid security, cyber security strategy, Andy Bochman, electric utilities

Here in the Northern hemisphere, where approximately 90% of readers reside, it's summer. In Europe (pre-financial crisis Europe, anyway), it's time to throttle back and head for the beach. In the U.S. and other parts of the world where long breaks are less common beach time remains, for most, a scarce commodity.

Certainly with record heat waves driving air conditioning use way up, energy workers need to be on their toes, not dipping their toes in ponds, lakes or oceans.

Because I subscribe to McKinsey & Company's Quarterly cyber security newsletter, I had the good fortune to come across this article: Playing war games to prepare for a cyberattack.

We've talked on this blog before about the need for resilience, as in THIS POST from earliest 2012 citing statements on the subject from PJM CEO Terry Boston.

To me, awareness and acknowledgement that you have endured successful attacks, are being attacked or at least scrutinized right now, and will come under increasingly heavy and varied fire in the future, is a key indicator of whether your organization is reality based... or not.

If your company is reality based, and you've haven't been running practice breaches yet, now's a good time to start, and the McKinsey piece gives you a framework for getting started.

I won't pull any citations from it, though it's full of goodness. But rather, leave you with this sharp comment from a UK-based reader:

In this still-nascent area of corporate risk and reputational vulnerability, the understanding of precisely who has responsibility for what should the worst happen isn’t good enough. We need new governance structures to provide more robust ownership, and in the interest of all stakeholders (customers, staff, shareholders, suppliers, etc.), we need a better reporting framework to ensure that public confidence in our most important IT and network-reliant brands is maintained.

Ah yes, the need for better security governance and better structures. Nothing like an actual impactful data or systems breach, or the realistic trial of dealing with one, to show you you're not organized to deal with it the way you'd want to be.

Practice might not make perfect, but it can only serve to improve your understanding of the challenges, and may give you the fodder you've got to have to drive the changes you need.

Now, where's the suntan lotion?

Andy Bochman is author of the Smart Grid Security Blog and an Energy Security Lead for IBM's Rational division, where the focus is on securing the software that runs the smart grid. Andy is a contributor to industry and national security working groups on energy security and cyber security. He lives in Boston, is an active member of the MIT Energy Club, and is the founder of the Smart Grid Security and DOD Energy Blogs.

Talk Back to the Author

Leave a Comment

Got something to say about this article? Be the first to leave a comment!

Leave a Comment

New to this Blog? Need some help?

Email:

[?]
We will send you an email with an appproval link you must click for your comment to appear.

Full Real Name:

[?]
Real comments need a real name.

Subject:

[?]
Please provide a short subject for your comment.

Comment:[?]

Do not post commercial/sales messages here. They will be deleted. Try: pr@smartgridnews.com
PLEASE NOTE: All HTML codes will be removed from your comment.

CAPTCHA Security Code

The numbers (0) and (1) are not used.
[?]
Please type the characters you see into the box above.

Remember my name? (Uncheck to forget.)

You can not edit or delete your comment once it is posted. Please check for spelling now.
Your IP Address is: 184.72.184.104

National Grid makes sustainability hub part of its smart grid pilot

National Grid to add interactive education facility to its Worcester smart grid pilot >>

First-ever military microgrid demonstration marks next phase in the market

U.S. military unveils DOD's first grid-connected microgrid >>

Chinese army resumes attacks against power grid

China resumes cyber attacks >>

HOT TOPICS

Utilities: What Walmart's power plans say about your future (it's scary!)

Walmart's plans have challenging implications for the utility business model >>

The energy storage breakthrough we've been waiting for?

Two scientists from the University of Calgary are betting on electrolyzer technology >>

Warning! Wireless networks are energy monsters

Wireless networks' energy use badly underestimated - a surge on the way? >>

The demand response "Catch-22" (and how to fix it)

Sentec CEO Mark England argues that the DR business model is broken >>

Data analytics buying guide part 1: What's in Big Data for you?

Discover some of the benefits utilities are realizing with advanced analytics >>

HOME
Contact
Advertise
Privacy

NEWS
News
Reviews
Commentary
Profiles
Blogs

PROJECTS
Demos & Pilots
R&D
Stimulus
Toolkits
Updates

BUSINESS
Business Case
Consumer Engagement
Electronomics
Global
Lessons Learned
Markets & Pricing
Policy & Regulation
Smart Grid 101
Strategy

T&D
Asset Management
Distribution Automation
DMS
Microgrids
Transmission
Grid Optimization

END USE
Building Automation
Demand Side
Efficiency
Electric Transportation
Smart Homes

TECHNOLOGIES
Communications
Demand Response
DG & Renewables
Home Area Networks
IT and Back Office
MDM
Metering
SCADA
Security
Smart Water
Standards
Storage
Transmission

KEY PLAYERS
Associations
Policy and Regulation
Sponsors and Affiliates
Utilities
Vendors

STORE
SGN Research Marketplace
Smart Grid Amazon
IDC Reports
Research and Markets

EXTRA
Events Calendar
Hot Topics
Newsletter Sign-up
QuickPoll Archives
RSS Feed
Videos
Webinars