National Institute of Standards and Technology Smart Grid Cybersecurity

Similar documents
NIST Cybersecurity Framework. ARC World Industry Forum 2014

Cybersecurity in the Utilities Sector Best Practices and Implementation 2014 Canadian Utilities IT & Telecom Conference September 24, 2014

Cybersecurity Framework: Current Status and Next Steps

How To Write A Cybersecurity Framework

Executive Order 13636: The Healthcare Sector and the Cybersecurity Framework. September 23, 2014

Framework for Improving Critical Infrastructure Cybersecurity

Cybersecurity Framework. Executive Order Improving Critical Infrastructure Cybersecurity

National Cybersecurity Challenges and NIST. Donna F. Dodson Chief Cybersecurity Advisor ITL Associate Director for Cybersecurity

NIST Cybersecurity Initiatives. ARC World Industry Forum 2014

Critical Infrastructure Cybersecurity Framework. Overview and Status. Executive Order Improving Critical Infrastructure Cybersecurity

Framework for Improving Critical Infrastructure Cybersecurity

Cybersecurity Audit Why are we still Vulnerable? November 30, 2015

Framework for Improving Critical Infrastructure Cybersecurity

Billing Code: 3510-EA

Cybersecurity as a Risk Factor in doing business

No. 33 February 19, The President

Cyber Security and Privacy - Program 183

C2M2 and the NIST Cyber Framework: Applying DOE's NIST Cyber Security Framework Guidance

Cybersecurity & Public Utility Commissions

NIST Coordination and Acceleration of Smart Grid Standards. Tom Nelson National Institute of Standards and Technology 8 December, 2010

Building Security In:

Testimony of Patrick D. Gallagher, Ph.D. Deputy Director

Securing the Grid. Marianne Swanson, NIST Also Moderator Akhlesh Kaushiva (AK), DOE Lisa Kaiser, DHS Leonard Chamberlin, FERC Brian Harrell, NERC

RECOMMENDED CHARTER FOR THE IDENTITY ECOSYSTEM STEERING GROUP

Applying Framework to Mobile & BYOD

Business Continuity for Cyber Threat

Cyber Security Working Group

Framework for Improving Critical Infrastructure Cybersecurity

NIST CYBERSECURITY FRAMEWORK IMPLEMENTATION: ENERGY SECTOR APPROACH

Cyber Security Working Group

Envisioning Collaboration for Medical Device and Healthcare Cybersecurity

IEEE-Northwest Energy Systems Symposium (NWESS)

ADVANCED DISTRIBUTION MANAGEMENT SYSTEMS OFFICE OF ELECTRICITY DELIVERY & ENERGY RELIABILITY SMART GRID R&D

A Guide to Successfully Implementing the NIST Cybersecurity Framework. Jerry Beasley CISM and TraceSecurity Information Security Analyst

CForum: A Community Driven Solution to Cybersecurity Challenges

CYBER SECURITY GUIDANCE

Voluntary Cybersecurity Initiatives in Critical Infrastructure. Nadya Bartol, CISSP, SGEIT, 2014 Utilities Telecom Council

FFIEC Cybersecurity Assessment Tool Overview for Chief Executive Officers and Boards of Directors

Applying IBM Security solutions to the NIST Cybersecurity Framework

The President issued an Executive Order Improving Critical Infrastructure Cybersecurity, on February 2013.

Commonwealth Approach to Cybergovernance and Cybersecurity. By the Commonwealth Telecommunications Organisation

Cybersecurity Risk Assessment in Smart Grids

ENERGY SECTOR CYBERSECURITY FRAMEWORK IMPLEMENTATION GUIDANCE

COMMENTS OF THE TELECOMMUNICATIONS INDUSTRY ASSOCIATION

cyberr by e-management The Leader in Cybersecurity Risk Intelligence (RI) Cybersecurity Risk: What You Don t Know CAN Hurt You!

Key Considerations for Information Technology Governance. 900 Monroe NW Grand Rapids, MI (616)

Information and Communications Technology Supply Chain Risk Management (ICT SCRM) AND NIST Cybersecurity Framework

STATEMENT OF PATRICIA HOFFMAN ACTING ASSISTANT SECRETARY FOR ELECTRICITY DELIVERY AND ENERGY RELIABILITY U.S. DEPARTMENT OF ENERGY BEFORE THE

Using Architecture to Guide Cybersecurity Improvements for the Smart Grid

Why you should adopt the NIST Cybersecurity Framework

NICE and Framework Overview

[STAFF WORKING DRAFT]

JOB ANNOUNCEMENT. Chief Security Officer, Cheniere Energy, Inc.

Cybersecurity for Medical Devices

Cybersecurity and Corporate America: Finding Opportunities in the New Executive Order

Consulting International

Utility-Scale Applications of Microgrids: Moving Beyond Pilots Cyber Security

Service Organization Control (SOC) Reports Focus on SOC 2 Reporting Standard

THE PRESIDENT S NATIONAL SECURITY TELECOMMUNICATIONS ADVISORY COMMITTEE

Grid Modernization and Smart Grid

SDN Security Challenges. Anita Nikolich National Science Foundation Program Director, Advanced Cyberinfrastructure July 2015

April 28, Ms. Hada Flowers Regulatory Secretariat Division General Services Administration 1800 F Street, NW, 2 nd Floor Washington, DC

THE 411 ON CYBERSECURITY, INFORMATION SHARING AND PRIVACY

1851 (d) RULE OF CONSTRUCTION. Nothing in this section shall be construed to (1) require a State to report data under subsection

Delving Into FCC's 'Damn Important' Cybersecurity Report

C ETS C/ETS: CYBER INTELLIGENCE + ENTERPRISE SOLUTIONS CSCSS / ENTERPRISE TECHNOLOGY + SECURITY

Introduction to NISTIR 7628 Guidelines for Smart Grid Cyber Security

SGIG Cyber Security Program Review Process

RESEARCH CALL TO DOE/FEDERAL LABORATORIES. Cybersecurity for Energy Delivery Systems Research Call RC-CEDS

NIST Cybersecurity Framework What It Means for Energy Companies

CLIENT UPDATE CRITICAL INFRASTRUCTURE CYBERSECURITY: U.S. GOVERNMENT RESPONSE AND IMPLICATIONS

DOE Cyber Security Policy Perspectives

Westlaw Journal. What is the Cybersecurity Framework? Risk Management Process And Pathway to Corporate Liability? Expert Analysis

PREPARED DIRECT TESTIMONY OF SCOTT KING ON BEHALF OF SOUTHERN CALIFORNIA GAS COMPANY

IAPP Global Privacy Summit Protecting Privacy Under the Cybersecurity Microscope

NH!ISAC"ADVISORY"201.13" NATIONAL"CRITICAL"INFRASTRUCTURE"RESILIENCE"ANALYSIS"REPORT""

Framework for Improving Critical Infrastructure Cybersecurity

Update on U.S. Critical Infrastructure and Cybersecurity Initiatives

National Cyber Security Policy -2013

Release of the Draft Cybersecurity Procurement Language for Energy Delivery Systems

Risk Management, Equipment Protection, Monitoring and Incidence Response, Policy/Planning, and Access/Audit

Transcription:

National Institute of Standards and Technology Smart Grid Cybersecurity Vicky Yan Pillitteri Advisor for Information Systems Security SGIP SGCC Chair Victoria.yan@nist.gov 1

The National Institute of Standards and Technology (NIST) NIST is an non-regulatory agency within the U.S. Department of Commerce Mission: To promote U.S. innovation and industrial competitiveness by advancing measurement science, standards, and technology in ways that embrace economical security and improve our quality of life 2

Executive Order 13636, Improving Critical Infrastructure Cybersecurity It is the policy of the United States to enhance the security and resilience of the Nation s critical infrastructure and to maintain a cyber environment that encourages efficiency, innovation, and economic prosperity while promoting safety, security, business confidentiality, privacy, and civil liberties NIST is directed to work with stakeholders to develop a voluntary framework for reducing cyber risks to critical infrastructure This Cybersecurity Framework is being developed in an open manner with input from stakeholders in industry, academia, and government, including a public review and comment process, workshops, and other means of engagement. 3

The Cybersecurity Framework For the Cybersecurity Framework to meet the requirements of the Executive Order, it must: include a set of standards, methodologies, procedures, and processes that align policy, business, and technological approaches to address cyber risks. provide a prioritized, flexible, repeatable, performance-based, and costeffective approach, including information security measures and controls, to help owners and operators of critical infrastructure identify, assess, and manage cyber risk. identify areas for improvement that should be addressed through future collaboration with particular sectors and standards-developing organizations able technical innovation and account for organizational differences include guidance for measuring the performance of an entity in implementing the Cybersecurity Framework. Framework for Improving Critical Infrastructure Cybersecurity, Version 1.0 was released on February 13, 2014 and is available at: http://www.nist.gov/cyberframework/index.cfm 4

NIST s Role in the Smart Grid Coordinate the interoperability framework by identifying the protocols and model standards necessary to enable the Smart Grid vision as outlined in the 2007 Energy Independence and Security Act (EISA) Title XIII mandate Work with industry stakeholders to achieve a common vision and consensus on the necessary standards Report on progress in the development of the interoperability framework Work with standards bodies/users groups to get standards harmonized/developed & used Visible active federal government leadership and coordination by NIST 5

Smart Grid Cybersecurity Cybersecurity is recognized as a critical, crosscutting issue that must be addressed in all standards developed for Smart Grid The cybersecurity strategy for Smart Grid must be a continuing work in progress so new and changing requirements are anticipated and addressed There are also emerging privacy issues related to consumer adoption of Smart Grid technologies 6

Smart Grid Cybersecurity is critical across all domains 7

The Impact of Smart Grid Cybersecurity Interoperable standards for the Smart Grid with security baked in, providing long term savings in resources to prevent a need to retrofit security into products Standardized foundation for cybersecurity of cloud applications Acceleration and coordination of research and practices to aid in mitigating emerging cyber-physical vulnerabilities Lead/facilitate standardization of a set of AMI security requirements Privacy protections for owners/operators of plug-in electric vehicles and occupants of buildings with AMI meters (expected to be hundreds of millions in U.S. alone 8

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information