I had discussions with a utility IT cyber security representative at the June 1 San Francisco Electronic Crimes Task Force Quarterly Conference. The nub of the discord was the dissonance between myself worrying about “keeping lights on” at all costs and his focus of maintaining security at all costs. As an example, I told him there will be systems that will not be able to be secured because they are either too old, not designed for security, or both - but CANNOT be replaced. He was surprised and appalled. This is not just a problem with electric utilities.