NERC offers recommendations for improved response during a grid attack
A large-scale power grid security exercise conducted near the end of 2015 tested response to simulated attacks on the grid and revealed some areas in need of improvement.
The North American Electric Reliability Corporation (NERC), a non-profit international regulatory authority that oversees the bulk power system in North America, conducted its third biennial grid security and emergency response exercise (GridEx III) last year on November 18 - 19. Recently, the NERC released analysis of GridEx III with detailed observations and calls for improvement.
— Western Area Power (@WesternAreaPowr) November 18, 2015
Simulated power grid attacks
GridEx III simulated cyber and physical attacks that affected the reliable operation of the grid, and offered those in the industry and avenue to test their response to the hypothetical incidents. The two-day event involved 4,400 individuals from 364 organizations across North America, which, according to the NERC, was the largest physical and cyber grid security exercise to date.
Following GridEx III, the NERC offered observations and proposed recommendations to help the electricity industry enhance the security and reliability of the North American bulk power system (BPS).
The findings and observations included:
The NERC suggested that industry members scrutinize reporting mechanisms to eliminate redundancies and reduce the amount of time needed to use them.
The NERC suggested enhancing the Electricity Information Sharing and Analysis Center (E-ISAC) portal to make it easier to highlight real-time, crucial information.
According to the NERC, "managing the challenges and opportunities related to social media was of particular interest." How those in the industry receive and share information with each other and the NERC suggested enhancing the social media simulator in future exercise tools.