Situational Awareness

Download the Practice Guide

The NCCoE has released the final version of NIST Cybersecurity Practice Guide SP 1800-7, Situational Awareness. Use the buttons below to view this publication in its entirety or scroll down for links to a specific section.

Download PDF »Open Web Version »

Current Status

The NCCoE released a final version of the NIST Cybersecurity Practice Guide, Situational Awareness for Electric Utilities on August 7, 2019.  

For ease of use, the guide is available in volumes:

  • SP 1800-7A: Executive Summary (PDF) (web page)
  • SP 1800-7B: Approach, Architecture, and Security Characteristics (PDF) (web page)
  • SP 1800-7C: How-To Guides (PDF) (web page)

View the complete guide as a PDF or web page.


To improve the security of information and operational technology, including industrial control systems, energy companies need mechanisms to capture, transmit, analyze and store real-time or near-real-time data from these networks and systems. With such mechanisms in place, energy providers can more readily detect and remediate anomalous conditions, investigate the chain of events that led to the anomalies, and share findings with other energy companies. Obtaining real-time and near-real-time data from networks also has the benefit of helping to demonstrate compliance with information security standards.

See the two-page fact sheet or the Situational Awarness Project Description (PDF) for additional information.

To get the latest information on our work in the energy sector, sign up for our energy email topic. NCCoE energy sector team meeting presentations and notes can be found in the NCCoE library

If you are an energy sector stakeholder or a technology vendor, and you would like to collaborate with the NCCoE on energy sector projects, please email us at

Collaborating Vendors

Organizations participating in this project submitted their capabilities in response to an open call in the Federal Register for all sources of relevant security capabilities from academia and industry (vendors and integrators). The following respondents with relevant capabilities or product components (identified as “Technology Partners/Collaborators” herein) signed a Cooperative Research and Development Agreement to collaborate with NIST in a consortium to build this example solution.

Hewlett Packard Enterprise logo
ICS2 logo
Radiflow logo
RS2 Technologies logo
RSA logo
Schneider Electric logo
Siemens logo
TDI Technologies logo
Waratek logo
Waterfall Security logo