News and Events

June 08, 2018

The Lexington Institute is hosting a Cybersecurity of the Electric Grid Capitol Hill Forum on Friday, June 8 at 12 pm. National Institute of Standards and Technology's Senior Security Engineer Jim McCarthy will be one of several presenters, and will discuss the NCCoE's energy sector projects and collaboration process.  

March 28, 2018

Join Robert Landavazo of Tripwire (NCEP partner) and James McCarthy of the NCCoE as they discuss the unique challenges of securing industrial operations and how operators can gain the necessary visibility into their OT networks and devices to deter, detect and respond to cybersecurity events.

October 18, 2017

As part of an NCCoE project, CyberX will be demonstrated in simulated manufacturing environments incorporating a diverse range of HMIs, PLCs, and OT protocols from multiple OT vendors. The project will result in a NIST Cybersecurity Practice Guide demonstrating how companies can strengthen controls with behavioral anomaly detection, without impacting the performance of their operational technology (OT) environments

October 17, 2017

NCCoE Security Engineer Jim McCarthy will lead the session titled "Convergence of Cybersecurity Situational Awareness Capabilities for the Energy Sector" at GridSecCon 2017 in St. Paul, MN. NCCoE engineers alongside former Department of Energy CTO Pete Tseronis, Eric Andersen and Mark Rice of Pacific Northwest National Laboratory  (PNNL), and Mary-Ann Ibeziako and Don Hill of University of Maryland College Park, Engineering and Energy, will share their expertise on Situational Awareness and discuss the recently NIST Special Publication 1800-7 that uses commercially available products to explore the methods for energy providers to more readily detect and remediate anomalous conditions and investigate the chain of events that led to the anomalies.

October 03, 2017

David Weitzel, cybersecurity engineer at the National Cybersecurity Center of Excellence (NCCoE), will be presenting a session entitled The NCCOE Approach to Situational Awareness on October 4th from 11:30am-12:00pm at this year’s 4th Annual Industrial Control Cybersecurity USA meeting.

September 21, 2017

Cutting edge technologies are essential to help the electricity sector adapt to the evolving cyber threat landscape.The National Institute of Standards and Technology found that these solutions can be integrated within a utility’s network to boost situational awareness and cope with attacks.

May 07, 2017

Siemens, over the last several months, has worked closely with the National Cybersecurity Center of Excellence (NCCoE) at the National Institute of Standards and Technology (NIST) on a cybersecurity project for the energy sector.

April 20, 2017

Siemens and the National Institute of Standards and Technology‘s National Cybersecurity Center of Excellence have collaborated to craft a cybersecurity practice guide for the energy sector.

April 18, 2017

Siemens, over the last several months, has worked closely with the National Cybersecurity Center of Excellence (NCCoE) at the National Institute of Standards and Technology (NIST) on a cybersecurity project for the energy sector.

April 17, 2017

The comments due today are on NIST's draft guide for electric utilities “Situational Awareness for Electric Utilities” which outlines methods for detecting and remediating cyber anomalies, investigating those risks and sharing findings with other energy companies.

April 14, 2017

The draft guide—1800-7—on “Situational Awareness for Electric Utilities” was developed and released in February for public comment by NIST's National Cybersecurity Center of Excellence with input from industry, and provides an “example solution” to help utilities alert staff to potential and actual cyber attacks on the electric grid.

March 16, 2017

CIS and NIST recently updated their critical security controls and framework. To read more about the new requirements and for Audit & Compliance go here. The critical security controls and framework make us CyberSecuirty and Network Mangement Best Practices.

March 04, 2017

The grid has been vulnerable physically for decades. Today, we are just beginning to understand the seriousness of an emerging threat to the grid’s cybersecurity. As the grid has become more dependent on computers and data-sharing, it has become more responsive to changes in power demand and better at integrating new sources of energy. But its computerized control could be abused by attackers who get into the systems.

March 02, 2017

The National Cybersecurity Center of Excellence (NCCoE) released a draft of the National Institute of Standards and Technology (NIST) Cybersecurity Practice Guide, Special Publication 1800-7: "Situational Awareness for Electric Utilities." The Practice Guide includes a model solution that can be used by electric sector companies to alert their staff to potential or actual cyber attacks.  

February 23, 2017

Waratek, along with a group of companies including Hewlett Packard Enterprise, Siemens, and RSA, worked closely with the National Cybersecurity Center of Excellence (NCCoe) to develop an example solution for electric companies to alert their staff to potential or actual cyberattacks directed at the grid. The example draft outlines the implementation of this solution and comments from the public are sought until April 17, 2017.

February 23, 2017

Security standards can help ensure utility companies keep their protection strong. The U.S. National Institute of Standards and Technology has its own recommendations, though they are not mandatory for utilities. A draft version of a new set of guidelines was just released, adding both urgency and detail for utility companies.

February 17, 2017

The National Institute of Standards and Technology has released for public comment a draft guide for electric utilities to detect and remediate cyber anomalies, investigate those incidents and share findings with other energy companies. The draft guide on “Situational Awareness for Electric Utilities” was developed by NIST's National Cybersecurity Center of Excellence with input from industry, and provides an “example solution” to help utilities alert staff to potential and actual cyber attacks on the electric grid.

February 16, 2017

As part of their current cybersecurity efforts, many electric utilities monitor data from the various systems and devices they rely on to keep the power flowing and to secure both their information technology and facilities. Pulling these data together and correlating events across data streams can be a time-consuming process, so the National Cybersecurity Center of Excellence (NCCoE) at the National Institute of Standards and Technology collaborated with a team of experts from industry, academia and government to develop a guide utilities can use to improve situational awareness and better respond to potential cyber attacks.

October 17, 2016

NCCoE Senior Security Engineer Jim McCarthy will help lead a full day NIST NCCoE Workshop at GridSecCon on October 18, 2016 in Quebec City, Quebec. The  workshop will discuss top challenges facing the energy industry today, and review profiles and worked example solutions in IdAM, Situational Awareness, and Industrial Control Systems. Topics will also include the NIST Cybersecurity Portfolio and Cybersecurity Framework (CSF). 

October 13, 2016

Cyberattacks are on the rise, and a staggering 41% of them target the energy sector. In order to protect the nation’s critical infrastructure, the sector must contend with a diverse set of unique challenges, from aging and disparate networks to a lack of awareness of threats and vulnerabilities. The National Cybersecurity Center of Excellence (NCCoE), in collaboration with energy sector stakeholders and cybersecurity technology vendors, has developed example solutions that utilities can use to help bolster their security postures. The NCCoE, a part of the National Institute of Standards and Technology (NIST), will host a workshop on October 18, 2016 at the North American Electric Reliability Corporation’s (NERC) Grid Security Conference (GridSecCon) in Quebec City, Canada. GridSecCon...