Situation
One North American Electric Cooperative initiated an ambitious transformation of its IT and Operational Technology (OT) systems. The Cooperative needed to align its infrastructure with the focus on newer technologies while meeting the cyber security objectives set by the National Rural Electric Cooperative Association (NRECA) Rural Cooperative Cybersecurity Capabilities program (RC3).
The rapid transformation of the energy landscape towards renewable sources presents a new set of cyber security challenges, especially for rural electric cooperatives. These cooperatives play a vital role in distributing power to rural and remote regions, making their security paramount.
At a glance
Organization: Rural electric cooperative
Industry: Energy & Utilities
Situation: Securing a digital transformation initiative in alignment with the NRECA RC3 program
Challenge: New software and networks for IT/OT integration introduced fresh vulnerabilities, and expanded support mechanisms exposed remote access concerns- especially for substation systems.
Solution: Tailored cyber security consulting carried out by the Facility Due Diligence team introduced comprehensive security architecture assessments (VADR), recommended access management systems, and delivered a full, actionable report to coop leadership highlighting critical security measures.
Results: The coop not only met the objectives of the RC3 program but also- with NCC Group’s guidance- developed a 3-year roadmap to invest in the continued security and efficiency of their people, processes, and technology.
Challenges
The Cooperative considered the following challenges when building their cyber security roadmap:
New Software and Networks: Integrating new software and hardware into existing systems to enhance communications and operational networks brought substantial benefits. However, it also introduced fresh vulnerabilities.
Remote Support: While new support mechanisms improved troubleshooting and maintenance, they also expanded remote access, exposing substation systems to new threats and potential intruders with network access and passwords
Solution
As an established global expert in cyber security consulting and risk mitigation, NCC Group was primed to guide the Cooperative through this intricate transformation. The Group's Facility Due Diligence service, led by Jim Mckenney, Practice Director for Industrials, was integral to the initiative. Harnessing the strengths of the Validated Architecture Design Review (VADR) methodology, NCC Group tailored an approach to address the unique needs of the Cooperative.
The journey began with a thorough review of the Cooperative's main offices and industrial control facilities. NCC Group's team worked meticulously, unraveling a complex set of vulnerabilities that could potentially compromise their critical systems. Notably, the Cooperative was unknowingly allowing unauthorized access to their Energy Management System (EMS) and Distribution Management System (DMS). These systems play an instrumental role in the transmission, distribution, and optimization of electricity across their extensive grid.
By detecting and eliminating malware presence on the Cooperative's systems, NCC Group effectively shut the door to potential third-party interference.
NCC Group's approach to addressing these vulnerabilities focused on collaboration. The team worked closely with the Cooperative's local field engineers, reviewing the current architecture plans and conducting facility walkthroughs. These interactions facilitated open dialogues about discrepancies in the system architecture and the associated cyber risks. The transparency fostered a shared understanding of cyber security risks and objectives, dispelling apprehensions about potential disruptions to operations.
The assessments resulted in an actionable report matched to the Cooperative's specific needs. Key recommendations from this report included:
- Implementing a Privileged Access Management System (PAMS) to secure access to SCADA systems from the enterprise network.
- Improving mobile application security
- Introducing multi-factor authentication for remote access.
These measures, aimed at enhancing security, also provided benefits such as improved overall system usage insights and a reduced risk of human error-induced outages.
Result
As a result of NCC Group's efforts, the Cooperative not only met the requirements on the RC3 checklist but also provided an informed status report to its leadership. The collaboration led to the development of a three-year roadmap for capital investments, demonstrating their commitment to advancing cyber security. This roadmap effectively aligned cyber security requirements with proposed design changes and focused on optimizing efficiencies and processes to minimize operational costs.
The adoption of a modernized reference architecture based on the NIST Framework and Roadmap for Smart Grid Interoperability Standards and IEC/ISO 62443 standardized the Cooperative's technology, tools, and apps into a unified pattern, enhancing the security and efficiency of the infrastructure.
The transformation was not solely focused on systems and procedures; it also prioritized people. NCC Group's cyber security training for controls and field engineers offered focused instruction on operational technology and supporting networks. It enlightened them on the signs of malware and ransomware attacks and equipped them with the knowledge to contain such incidents effectively.
The Cooperative's transformation is a testament to the progress that can be achieved with clear focus, expert guidance, and a collaborative approach. Through this journey, NCC Group demonstrated how a deep, bespoke approach to cyber security can seamlessly align with operations. The transformation validates that maintaining security in the face of rapid technological advancements is achievable with the right partnership and vision.
“Our experience with NCC Group was an eye-opener. Their holistic approach to cybersecurity assessment helped us identify our vulnerabilities and provided a clear, actionable plan.
The collaborative process bridged gaps between our IT and field teams, creating a shared understanding of our cybersecurity goals. We now have a solid foundation and a clear three-year roadmap for our cybersecurity initiatives."
NCC Group exists to make the world safer and more secure.
As global experts in cyber security and risk mitigation, NCC Group is trusted by over 14,000 customers worldwide to protect their most critical assets from the ever-changing threat landscape.
Get started on your cyber security journey.
Download the full case study or reach out to one of our experts to learn more about NCC Group's RC3 Program Assistance and key strategies for improving cyber defenses in the Energy & Utilities sector.