NIST Cybersecurity Framework Implementation Case Study

NIST Cybersecurity Framework Implementation Case Study

  • Abbreviated cybersecurity guideline to effectively implement the NIST Cybersecurity Framework
  • Authored by utilities for the electric power industry
  • Detailed recommended steps and real-world examples

A utility guide for implementing NIST Cybersecurity Framework and DOE Cybersecurity Capability Maturity Model (ES-C2M2)

Cyber attacks are unquestionably one of the greatest threats to the U.S. economy, including to U.S. energy infrastructure. Cyber incidents have the potential to significantly disrupt electric utility operations.

The U.S. National Institute of Standards and Technology (NIST) created the Cybersecurity Framework (CSF) to provide IT leaders with a set of voluntary guidelines designed to enable businesses to take steps to improve cybersecurity and resiliency. Authored by utilities, this enhanced case study provides utility IT experts with a view into one of many potential approaches that electric utilities can use to leverage the NIST CSF, as well as the DOE Cybersecurity Capability Maturity Model (ES-C2M2), to implement cybersecurity programs. This case study is specifically intended for the electric power industry, including utility generation, transmission, distribution, and distributed-energy resource business units.

What’s in the report

  • Nine recommended steps for implementing a successful cybersecurity program
  • Key tasks, activities, and outputs for each step
  • Real-world examples that illustrate how an electric utility could implement a sustainable, cybersecurity risk-management program with executive leadership support

Fill out this form to get the report.