100 Years of Doble: Supporting Utilities in the Cyber Age
“For every action, there is an equal and opposite reaction.” – Sir Isaac Newton
Newton’s quote around the interaction between two separate, competing forces can also be applied to the implementation of new technology in the electric power industry.
Technology has advanced the capabilities of the electric grid beyond what was comprehendible even 25 years ago, but this digitization has also introduced a new wave of threats that require continuous monitoring and vigilance: cyberattacks.
The power industry has created enormous efficiencies of scale for utilities using network technology. Remote monitoring and management of assets saves time, money and avoids downtime. The risk is that every sensor and piece of equipment used in this process has now become a point of vulnerability that can be exploited.
Cybersecurity is a complex risk and our clients and partners depend on us to keep them safe and secure. Over the years, Doble has created several programs to support utilities along their security and compliance journeys.
Transient Cyber Assets: Addressing cybersecurity in the field
Field personnel are often at the forefront of the defense against cyber threats. The transient devices, such as laptops and tablets, these teams use every day to communicate with the network must be secured to the highest standards to prevent spreading malware across critical infrastructure.
Globally, new security mandates – such as the European Union’s Network and Information Security (NIS) Directive and North America’s NERC CIP Transient Cyber Asset (TCA) requirements – have been enacted to reduce the likelihood of these attacks and create higher standards for the cybersecurity of the power grid. Doble believes an effective approach for securing field devices starts with tailored controls for critical work processes and created a Transient Cyber Asset Program with this in mind.
This holistic offering is built upon Doble’s keen understanding of utility field work processes and challenges, and consists of a rugged field device, the Doble Universal Controller (DUC), which includes multiple, versatile security controls that can be chosen and configured to best fit the utility’s needs. The benefit is increased work efficiency and compliance with NERC CIP requirements and other emerging cybersecurity mandates around the world.
Effective security patch management
Managing the security of remote devices can be complicated and overwhelming, which is why offerings such as Doble PatchAssure™ have become so critical.
Regulatory standards such as NERC CIP-007 require timely discovery and application of security patches. Doble PatchAssure™ is an effective update management solution that provides comprehensive vulnerability discovery, monitoring and sophisticated configuration management, to ensure all devices in the fleet are updated and secure. There’s also a capability for extensive evidence collection for audits.
The value network technology has created for the power industry cannot be overstated, but neither can the risk of cyber threats. Constant vigilance and the right partner can help you maximize the technology’s benefits and mitigate the risks.
Learn more about how Doble can help you address your cybersecurity challenges.
