Part 2 – Governance Introduction NERC CIP standards are designed to protect the reliability and security of the North American bulk power system. Below we discuss NERC CIP best practices practices to help you maintain compliance and minimize the risk of fines or penalties: Governance Creating a strong governance for […]
Blog
Developing and implementing a cybersecurity strategy as a Chief Information Security Officer (CISO) means managing several key responsibilities: This blog looks at Proactive vs. Reactive approaches: Defining Goals The first step in creating a cybersecurity strategy is to define clear and measurable cybersecurity goals that align with the organization’s overall […]
Part 1 – Reconnaissance Introduction Ensuring compliance with NERC CIP (Critical Infrastructure Protection) regulations is crucial for an electric power utility to avoid fines and penalties. NERC CIP standards are designed to protect the reliability and security of the North American bulk power system. Below we discuss NERC CIP best […]
The CISO for a power plant, utility, responsible for generating electricity, faces some specific challenges that they must address to ensure the security of any critical infrastructure. Here are some key considerations for Powerplant Cybersecurity and physical security: Physical Security Power plants have unique physical security requirements due to the […]
As a CISO in a power plant responsible for generating electricity, there are specific challenges and “gotchas” that you should be aware of to ensure the security of critical infrastructure. Here are some key considerations for Powerplant CISOs, regarding Operational Technology: Industrial Control Systems (ICS) Security Power plants rely on […]
If your organization has been attacked by ransomware, it’s crucial to act swiftly and decisively to mitigate the impact and minimize further damage. Here are 12 steps you could take as a CISO: (Ransomware CISO Actions) Activate the Incident Response Plan Immediately activate your organization’s incident response plan. This plan […]