The electricity sector is in the midst of a fundamental cultural change with respect to cybersecurity. While the electricity sector has been the only critical infrastructure sector that has had mandatory and enforceable cybersecurity standards to date, this minimum level of protection is not enough to battle the continuous onslaught of malicious code and targeted attacks against our IT and Industrial Control Systems (ICS). The comprehensive “baseline of security” found within the NERC Critical Infrastructure Protection Standards is necessary to ensure that we are all speaking the same language. The mandatory and enforceable standards, while minimal, provide awareness and basic . . .
From the Summer 2015 Issue
Leave a Comment