Control Systems Cybersecurity Expert, Joseph M. Weiss, is an international authority on cybersecurity, control systems and system security. Weiss weighs in on cybersecurity, science and technology, security emerging threats and more.
The NERC CIPs were drafted from a compliance rather than security perspective. Consequently, this has led to unintended consequences to both cyber security and grid reliability. I want to focus on limitations of the NERC CIPs and how it is contributing to the lack of cyber security, and worse, reducing...
I had an opportunity to listen to the Smart Grid Hearings held March 3 with the Senate Energy and Natural Resources Committee. NIST Director, Pat Gallagher, DOE’s Pat Hoffman, FERC Commissioner Kelly, Commissioner Butler of NARUC, Katherine Hamilton of the GridWise Alliance, Edward Lu of Google, and Evan Gaddis of...
I thought it would be important to put in context why Walt Boyes asked the question about security and compliance. I am currently working with a utility that had a NERC CIP assessment performed by a very credible consulting organization.
I have been invited to participate in “The Infrastructure Modernization Initiative - Homeland Security Implications and Challenges” conference at the Naval Post Graduate School in Monterey March 16-17. Perry Pederson and I are the only control system representatives. I hope to get our needs and desires into the discussions.
Many people believe control systems can be isolated from other networks and an “air-gap” maintained. Unfortunately, there is a disconnect between that assumption and reality. This conflict was very evident at Distributech, IEEE T&D Conference, ISA Expo, ads in automation and control system literature, and today’s Smart Grid Alliance webinar.
NERC is creating a group called Hydra that will be a network of electric industry subject matter experts (SME) to handle modern fast-moving threats to the bulk power system. There is an open invitation for two hundred SME’s.