This March, the Smart Grid Interoperability Panel (SGIP), a member-led consortium that securely accelerates and advances grid modernization through interoperability, brought together stakeholders and security thought leaders in Phoenix, Arizona, for a one-day, face-to-face session on reducing the risk of cyber attacks on critical infrastructure. The aim of the workshop was for individuals responsible for cybersecurity to share their knowledge and experiences.
Much discussion ensued among utilities about the transition to North American Electric Reliability Corporation’s critical infrastructure protection cybersecurity standards, version 5 (NERC CIPv5), use of cybersecurity frameworks, and Cybersecurity Capability Maturity Model (C2M2).
“Whether as a consumer or industry association, we all would be affected if a utility cyber attack was not mitigated,” said SGIP President and CEO Sharon Allan. “SGIP strives to provide a trusted environment so that knowledge can be shared amongst security personnel in utilities. Cybersecurity takes a team collaborating across private and public sectors to truly succeed. More knowledge-intensive workshops and thoughtful discussions are invaluable.”
Today, SGIP announced how they will continue and extend the conversation.
In next steps, SGIP will work with utility members to create a use case highlighting how different utilities have implemented various voluntary cybersecurity frameworks (e.g., The Framework for Improving Critical Infrastructure Cybersecurity, the Cybersecurity Capability Maturity Model, etc.). The case study will highlight the scope in which the frameworks were implemented, goals, the methodology, organizational process, results and benefits, and key lessons learned.
SGIP has been part of the planning team of the National Institute of Standards and Technology’s Grid 3.0 Workshop that occurs next week. The cybersecurity framework will be one of the key conversation extensions.
Regarding C2M2, SGIP is planning a webinar for April 23 with the U.S. Department of Energy. Details will be announced within the next week.
