The power grid is becoming increasingly complex due to the integration of municipal utilities, renewable energy resources, new substations and millions of smart grid edges like smart meters and EV-charging stations. The majority of this electric infrastructure is located far away from the central control room. Therefore, control is increasingly carried out digitally via remote access. To secure these peripheral systems, distribution and transmission system operators often rely exclusively on firewalls. These might reliably detect known malware. However, with several hundred of thousands of new malware variants each day, cybersecurity limited to identifying known signatures becomes highly unreliable.
Hands down, by now there are probably a trillion articles offering advice on how to “get ready for NIS2” (just do a search in your search engine of choice). Some contain sensible tips, most simply re-list the requirements of the updated Network and Information Security directive and leave the reader in limbo.
Still, even just 1.5 months away from the EU's NIS2 directive turning into national law, many customers in the electrical sector we speak to have difficulties getting their heads around the full impact of NIS2. In particular, the extension of thorough cybersecurity to the OT networks of their grid infrastructure causes headaches. For many electric and multi-utilities this is still new territory with many blind spots and unknown challenges.
The NIS2 directive requires owners and operators of electric and multi-utilities to include their OT networks in risk management procedures and risk analysis. The target is to determine the risk exposure of their critical processes and define appropriate mitigation measures. And this is for good reason, as the results of our vulnerability assessments at IOUs, municipal as well as public utilities highlight.
Energy companies are under pressure from all sides when it comes to the cyber security of their critical infrastructure. The spiraling skills gap is set against an increasingly dynamic risk landscape and more far-reaching legislation. Nevertheless, companies must quickly find ways to set up their own operational technology (OT) security expertise.
In the latest episode of the 'OT Security Made Simple podcast' , Klaus Mochalski, founder and CEO of Rhebo, sits down with Todd Wiedman, Chief Security Officer of Landis+Gyr, to cover a range of topics, shedding light on the evolving challenges and solutions within the realm of AMI security.
The IEC 62443 family of standards is an old acquaintance to most security managers for industrial systems. For more than ten years, it has been considered THE standard for industrial cybersecurity. It also serves as a "horizontal standard" offering a sector-agnostic baseline for industrial cybersecurity, upon which sector-specific requirements, e.g. for the energy sector, could be added by industry experts. In this blog we explore its implications for the energy sector.
Posts by Topic
- Smart Metering (25)
- Grid Edge Intelligence (21)
- Smart Charging (17)
- Grid Resiliency (16)
- Electric Vehicles (15)
- IoT Technologies (14)
- Utility (11)
- Consumer Engagement (9)
- Cybersecurity (9)
- Water Metering (9)
- Distribution Intelligence (7)
- Distribution System Operator (DSO) (7)
- CPO (6)
- Smart Grid (6)
- Demand Side Management (5)
- Energy and Capacity Optimization (5)
- Grid Digitization (5)
- Dynamic Load Management (4)
- EMSP (4)
- Industrial Metering (4)
- Power Quality (4)
- Renewable Energy (4)
- Smart (4)
- AMI Services (3)
- G3 PLC (3)
- Managed Services (3)
- Power Line Communication (PLC) (3)
- Smart Infrastructure (3)
- Smart Meter (3)
- Smart Metering Solutions (3)
- integration (3)
- Cellular (2)
- Customer Focus (2)
- Distributed Energy Resource (2)
- E360 Smart Meter (2)
- Gridstream Solution (2)
- Internet of Things (2)
- P2P (2)
- Renewable Integration (2)
- Smart City (2)
- Smart Meter Market (2)
- charge point (2)
- About Landis+Gyr (1)
- Advanced Grid Analytics (1)
- Analytics (1)
- Artificial Intelligence (1)
- AutoCharge (1)
- Big Data (1)
- Data Analytics (1)
- Data Privacy (1)
- EasyPark (1)
- Enlit Europe (1)
- Events (1)
- Gridstream Converge (1)
- Heat & Cold Metering (1)
- ISO 15118 (1)
- Independent clusters (1)
- Regulation (1)
- Services (1)
- Smart Meter Focus (1)
- Smart Metering Service (1)
- Software Services (1)
- Standards (1)
- UK (1)
- UK Public Charge Point Regulations (1)
- compliance (1)
- e360 (1)
- enapi (1)
- flexibility (1)
- netzero (1)
- regulations (1)
- roaming (1)
- saving (1)
- sustainability (1)
Popular Articles
- Get smart: Water meters and communication protocols
- Landis+Gyr Corinth - A 50 year legacy in smart meter manufacturing
- Smart Metering as a Service - Boost your AMI operations with Managed Services
- Metering as a Service - An opportunity to transform
- Cyber security according to IEC 62443 in the energy sector
Recent Articles
- OCEAN CPMS x ENAPI: Flexible, Cost-Effective Roaming
- Meeting UK Public Charge Point Regulations: Transparent, Reliable, and Ready with OCEAN CPMS
- From Edge to Enterprise: How Head-End Systems Future-Proof Grid Operations
- Strengthen Your Cybersecurity: End-to-End Protection with Landis+Gyr Security Solutions
- Integrating Flexibility From the Ground Up