NIST Cybersecurity Practice Guide Released

Monday, February 20, 2017 @ 07:02 PM gHale


To improve the security of information and operational technology, including industrial control systems, energy companies need mechanisms to capture, transmit, analyze and store real-time or near-real-time data from these networks and systems.

A draft of the NIST Cybersecurity Practice Guide, SP 1800-7 “Situational Awareness for Electric Utilities” released last week, said officials at the NCCoE.

RELATED STORIES
Working To Fight Advanced DDoS Attacks
Stronger, Secure Wireless for Safer Driving
Working to Hack Proof RFID Equipment
Machine Learning to Perfect UAV Landings

Public comments on the draft are possible through April 17.
https://nccoe.nist.gov/webform/comments-situational-awareness-practice-guide-draft

For ease of use, the guide is available in volumes:
• SP 1800-7a: Executive Summary
• SP 1800-7b: Approach, Architecture, and Security Characteristics
• SP 1800-7c: How-To Guides

Or click here to view the complete guide.

See the two-page fact sheet or the Situational Awareness Project Description for additional information.

With such mechanisms in place, energy providers can more readily detect and remediate anomalous conditions, investigate the chain of events that led to the anomalies, and share findings with other energy companies. Obtaining real-time and near-real-time data from networks also has the benefit of helping to demonstrate compliance with information security standards.

Read the two-page fact sheet or download the revised Situational Awareness Project Description for more information on the project.



Leave a Reply

You must be logged in to post a comment.