Guest Post: DOE Develops Cyber Risk Tools for Utilities

The U.S. Department of Energy (DOE) has released an initial version of a document designed to assist electric utilities in assessing their cyber security vulnerabilities. DOE developed the guide in coordination with several other agencies and electric industry representatives, including NRECA; Lubbock, Texas-based South Plains Electric Cooperative; and Johnson, Vt.-based Vermont Electric Cooperative.

The document is focused on four objectives: strengthening cyber security capabilities in the electric utility sector; enabling utilities to effectively evaluate and benchmark cyber security capabilities; sharing knowledge and industry best practices; and enabling utilities to prioritize related investments and actions.

The assessment model was developed in support of the Electricity Subsector Cybersecurity Risk Management Maturity Initiative, a White House initiative led by DOE and the Department of Homeland Security. The full guide, “Electricity Subsector Cybersecurity Maturity Model,” is available on the DOE website.

This article first appeared in Solutions News Bulletin, the weekly newsletter for member-owners of the National Rural Utilities Cooperative Finance Corporation (CFC).