FERC Moves To Combat Emerging Utility Cybersecurity Vulnerabilities

"Federal regulators have begun a push for new cybersecurity defenses to prevent sophisticated attackers from penetrating utility control rooms and other industrial control system centers by infiltrating malware on third-party vendors' products.

A proposed rulemaking announced Thursday by the Federal Energy Regulatory Commission would require utility industry representatives to develop a new security strategy and standard for supply chain management processes.

FERC is also seeking comment on a second proposed order to the industry's standards group, the North American Electric Reliability Corp., which would require additional security controls to safeguard communications between grid control centers when vital controls data is traveling on unprotected third-party communications channels."

Peter Behr and Blake Sobczak report for EnergyWire July 20, 2015.

Source: EnergyWire, 07/21/2015