Expanding networks requires higher standards to keep customer data secure.

Whether your utility is supplying electricity, gas, water, or any combination of the three, one fact remains:  as your infrastructure grows and your technology changes, it is vital to secure your network and your data.

Especially as utilities implement smart grid technology and expand the telecommunication and information technology infrastructure necessary to support these projects, securing data and centralizing security practices has become even more salient.  Facing new NERC-CIP standards and legacy equipment that may not support rigorous security requirements, many utilities struggle to remain compliant and secure.  Even though smart grid security regulations and standards are still evolving, utilities cannot afford to wait until standards are finalized to begin developing their smart grid implementation strategy and plan.

Changes in the Utility Network

Utilities must assess the security of their existing systems, evaluate and plan for new costs associated with security, craft security policies and procedures, train their employees on those policies and procedures, and establish a management and documentation mechanism that ensures all of these things get done in a thorough and timely fashion.  Are you asking:

• How are you protecting your smart grid infrastructure from hackers, cyber terrorists, and foreign countries?
• What are your security gaps and costs associated to being industry complainant?
• How are you controlling operating cost and experiences related to smart grid security?
• Does your staff have the necessary training and knowledge to implement and support smart grid technologies?
• With the network expansion on such a large scale and on such an aggressive schedule, how to you minimize data transfer bottlenecks and degraded performance?
• Does your cyber security plan include centralized monitoring, management, and reporting?
• Are your policies and procedures for change management, security training, and disaster recovery up to date an in place?
• How would I detect if our network was being attacked and what would I do about it if I did detect it?
• How much security is enough?

A fully engaged approach

West Monroe Partners has established a cyber security approach and methodology based on industry standards and best practices from NIST, NERC-CIP, AMI-SEC, and the IEEE.  Utilizing deep industry experience including drafting approved Cyber Security plans for the DOE on behalf of a number of our utility clients; West Monroe brings a unique convergence of cyber security standard knowledge and the knowledge of the needs of your utility.  West Monroe delivers:

• Detailed security assessments
• Network and infrastructure design
• Technology requirements,  evaluation and RFP
• Policy development and creation
• Security system implementation

This holistic security approach helps establish a “Cyber Security Handbook” that establishes security roles and responsibilities, system characterization, risk management strategy, defense-in-depth strategy, security controls, and a business case.  Through deep-dive working sessions, West Monroe partners with your network team to identify security and systems interactions ultimately delivering scalable and secure smart grid infrastructure. 

West Monroe Partners has extensive experience in disaster recovery and data/network security across a breadth of industries. Read more about West Monroe’s IT risk assessments, security roadmaps, and security experts here.