USEA
In early December, the United States Energy Association hosted an illuminating panel on Cyber Risk Management Through Measurement. This discussion, hosted by Sheila Hollis, Acting Executive Director, U.S. Energy Association, and moderated by Andy Bochman, Senior Grid Strategist, Idaho National Laboratory, picked the brains of some of this industry's leaders, following the success of USEA's fifteen-part series on cybersecurity and digitalization.
As the world increasingly relies upon technology and grounds itself in the internet, cyber risks can threaten organizational security and present challenges even on an individual level. With the growth of the utilities industries intertwining with cybersecurity, it has become paramount to quantify these potential threats. The PUF Staff listened in and here you will find excerpts of what the cyber experts are saying.
Principal Cyber Risk Advisor, Threat Operations Center, Dragos, Jason Christopher: You cannot protect what you do not know. When we talk about the industrial space, the operational technology, the OT part of the equation, that is difficult for a lot of organizations, especially if they're just getting started in measurement or management of that problem.
If you talk to your engineers, they may say, yes, I know what that equipment is, but do they really? If you don't have data, how do you know? If you don't have the visibility, how can you ascertain?