EEI > Issues & Policy > Cyber & Physical Security
Cyber & Physical Security

Protecting the nation’s energy grid and ensuring a reliable supply of energy are top priorities for America's electric companies. The energy grid is a complex, interconnected network of generation, transmission, distribution, control, and communication technologies, which can be damaged by natural events—such as severe storms—and by malicious events, such as cyber and physical attacks.

Today, the electric power industry is forging ahead with a series of initiatives to safeguard the energy grid from threats and is partnering with federal agencies to improve sector-wide resilience to cyber and physical threats. The industry also collaborates with the National Institute of Standards and Technology, the North American Electric Reliability Corporation, and federal intelligence and law enforcement agencies to strengthen its capabilities.

As threats to the grid grow and become more sophisticated, the industry remains committed to continuing to strengthen its defenses.

  • The Electricity Subsector Coordinating Council – Learn more about the industry’s partnership with the government to protect the electric grid.
  • Protecting the Energy Grid for Customers  Read about the electric power industry’s leadership on grid security and reliability.
  • Ransomware Preparedness – The ESCC, in collaboration with the American Gas Association, Downstream Natural Gas ISAC, and Electricity ISAC, developed a “Ransomware Preparedness” document for energy companies to consider in order to reduce the risk and associated impact of ransomware.
  • Cyber Mutual Assistance Program – Learn about how the electric power and natural gas industries are coordinating with the government and providing mutual assistance to address cyber threats.
  • Cultivating a Culture of Security​ – Learn how the industry is cultivating a security-conscious workforce through the development of the Culture Security Initiative.
  • Protecting the Energy Grid Against EMPs and GMDs​ – The energy grid’s complex, interconnected technologies may be impacted by bursts of electromagnetic energy, such as naturally occurring geomagnetic disturbances (GMDs) or malicious, man-made electromagnetic pulses (EMPs). To address these potential hazards, the electric power industry is working hard to enhance the resilience of the energy grid, to mitigate the potential impact of an EMP, and to accelerate recovery from potential incidents.
  • Model Procurement Contract Language Addressing Cybersecurity Supply Chain Risk​ – To facilitate managing cybersecurity supply chain risks, a committee of representatives of EEI member companies developed this Model to align cybersecurity requirements and to encourage adoption by the vendor community. Recognizing the importance of procurement in managing supply chain risk, the member companies who developed the Model focused on the processes required by the NERC supply chain risk management reliability standard—CIP-013-1 Requirement 1, Part 1.2—but also included language that goes beyond this requirement with the goal of improving cybersecurity. The Model Is a starting point for negotiations with vendors and service providers—it should not be considered a best practice or requirement, has not yet been tested by vendors and service providers, and can be adopted/adjusted as appropriate. Lessons learned and feedback from implementation will inform the development of the next version of the Model. 

Security Matters Articles Featured in Electric Perspectives

Related Content

Security Matters
Security Matters
An Industry/Government Partnership to Protect the Grid
An Industry/Government Partnership to Protect the Grid