Part of Energy & Sustainability Network »

The Energy Collective Group

This group brings together the best thinkers on energy and climate. Join us for smart, insightful posts and conversations about where the energy industry is and where it is going.

Shared Link

Richard (Dick) Brooks on LinkedIn: FERC proposes internal monitoring requirements for bulk electric facilities

Richard Brooks's picture
Richard Brooks 101,465
Co-Founder and Lead Software Engineer, Reliable Energy Analytics LLC

Dick Brooks is the inventor of patent 11,374,961: METHODS FOR VERIFICATION OF SOFTWARE OBJECT AUTHENTICITY AND INTEGRITY and the Software Assurance Guardian™ (SAG ™) Point Man™ (SAG-PM™) software...

  • Member since 2018
  • 1,540 items added with 672,338 views
  • Jan 31, 2022
  • 666 views

The words of Tom O'Brien from PJM, in his Senate Testimony are compelling:

"PJM utilizes the Cybersecurity Framework, developed by the National Institute of Standards and Technology, as our approach to managing cybersecurity. The framework focuses on the principal functions to identify, protect, detect, respond and recover."

"Partnership and collaboration are essential to any cybersecurity or physical security program. The importance of working across the industry, and with our state and federal government partners – and even across other critical infrastructures like telecom, finance, water and gas – to share threat information and best practices cannot be overstated. Threat intelligence and learning from others in relation to threats and prevention is critical to managing any cybersecurity program."

I sincerely hope that FERC will seriously consider adopting the collaborative approach to cybersecurity protections across all critical infrastructure that CISA is advocating. Let's put the Nation's cybersecurity experts at CISA/NIST in charge of cybersecurity practices and let NERC focus on what it does best, reliability standards for grid operations and planning - leave critical infrastructure cybersecurity to the experts at CISA/NIST.

There does appear to be some hope that siloed cybersecurity approaches are waning, thanks to this new bill.

 

 

Richard (Dick) Brooks on LinkedIn: FERC proposes internal monitoring requirements for bulk electric facilities

What gives FERC the impression that energy companies aren't already following best practices for cybersecurity, per NIST guidelines, and they need to address a "gap" in cybersecurity protections by mandating 20 year old practices and technologies as "NERC

Read More
Source: energycentral.com
Discussions

No discussions yet. Start a discussion below.

Richard Brooks's picture
Thank Richard for the Post!
Energy Central contributors share their experience and insights for the benefit of other Members (like you). Please show them your appreciation by leaving a comment, 'liking' this post, or following this Member.
More posts from this member

Get Published - Build a Following

The Energy Central Power Industry Network is based on one core idea - power industry professionals helping each other and advancing the industry by sharing and learning from each other.

If you have an experience or insight to share or have learned something from a conference or seminar, your peers and colleagues on Energy Central want to hear about it. It's also easy to share a link to an article you've liked or an industry resource that you think would be helpful.

                 Learn more about posting on Energy Central »

Your access to Member Features is limited.

Apply for membership
Related Content
Short Article on US Power Grid Attacks
CISA’s public-private cyber collaborative to focus on energy, water
Groundhog Day, SEC Style: Proposed Rule On Cybersecurity Risk Governance Has All The Pain Of SOX With Fewer Financial Penalties
The need for correct, authenticated pressure measurements for reliability, safety, and cyber security