Energy Sector

When the lights dim due to a disruption in power generation or distribution, our productivity and quality of life do, too. Energy is an absolutely critical infrastructure element for the nation.

In July 2013, after consultation with energy company IT security professionals, the NCCoE posted drafts of the first of several use cases addressing cybersecurity issues that are relevant across the energy sector. Find out more about the resulting projects below.

To stay up to date on our work in the energy sector, sign up for our energy email alerts and join our community of interest. Community of Interest meeting presentations and notes can be found in the NCCoE library

Securing the Industrial Internet of Things (IIoT)

An approach for improving the overall security of information exchanges between and among distributed energy resource systems and electric power distribution facilities. Learn more about this project.

Asset Management

To properly assess cybersecurity risk within the operational technology network, energy companies must be able to identify all their assets, especially the most critical. Learn more about this project.

Identity and Access Management (IdAM)

A centralized system to authenticate individuals' access to IT and operational resources and systems and control their access with a high degree of certainty. Learn more about the project and download the NIST Cybersecurity Practice Guide 1800-2.

Situational Awareness

Mechanisms to capture, transmit, analyze, and store real-time and near-real-time data across energy companies’ networked systems. Learn more about the project and download the NIST Cybersecurity Practice Guide 1800-7.