Hi All,
NIST just published NIST SP 1800-32, Securing the Industrial Internet of Things: Cybersecurity for Distributed Energy Resources.
The cybersecurity guidance features technologies and practices that organizations can use to monitor, trust, and protect information exchanges between and among commercial- and utility-scale distributed energy resources (DERs). Featured in the guide is an example solution for monitoring and detecting anomalous behavior of connected industrial internet of things (IIoT) devices and building a comprehensive audit trail of trusted IIoT data flows.
Addressing Emerging Cybersecurity Concerns of DERs
The use of small-scale DERs is growing rapidly and transforming the power grid. In fact, a distribution utility may need to remotely communicate with thousands of DERs and other grid-edge devices-many of which are not owned by them. Any attack that can deny, disrupt, or tamper with DER communications could prevent a utility from performing necessary control actions and could diminish grid resiliency-a concern that was highlighted in a United States Government Accountability Office report, Electricity Grid Cybersecurity.
This NCCoE practice guide aims to help companies provide secure access to DERs and monitor and trust the ever-growing amount of data coming from them.
Share Your Thoughts
We look forward to receiving your comments on this draft guide
Submit comments online:
https://www.nccoe.nist.gov/webform/comments-draft-sp-1800-32-securing-industrial-internet-thingsSubmit comments via email:
[email protected]
------------------------------
Michael Roza CPA, CISA, CIA, MBA, Exec MBA
------------------------------