© 2020 RSM US LLP. All rights reserved.
Smart Grid Security Testing
Mitigating risks to smart grid components and systems
The evolution of the nation’s electric power grid into an advanced digital infrastructure brings new vulnerabilities and attack vectors. A breach of this technology or the data it handles could include loss of reputation, ﬁnes and penalties. As utility companies continue to adopt new technologies, it is important to have them tested to ensure that proper privacy and security precautions are in place.
RSM can analyze your technology through a variety of services to ensure the security and efficient transmission of consumers' power supply, quick restoration after outages, reduced management costs, and better integration of power generation and renewable energy systems. Our smart grid security testing services can help you understand new vulnerabilities, risks and changes in your environment. This effort demonstrates due diligence and a proactive security stance to key stakeholders, while also facilitating continual compliance with regulatory requirements.
RSM uses the NISTIR 7628 Guidelines for Smart Grid Cyber Security to assess your organization’s security controls and their capability to minimize risks to smart grid components and systems. Our assessment identifies risks to the loss of conﬁdentiality, integrity and availability of smart grid components. RSM’s approach to auditing an entity to a particular standard is based on the Cyber Security Evaluation Tool (CSET) and our extensive knowledge in the electric utility space.
Typical risks to smart grid security include:
- Increased footprint leading to more attack vectors, millions of devices and hundreds of networks
- Vulnerabilities in one system leaving another open to attacks and the potential for cascading failures
- Increased opportunity for an attacker to obtain conﬁdential customer data through man-in-the-middle or similar attacks
RSM’s smart grid security assessment helps identify these risks and results in a road map to guide your organization in the remediation of risks to smart grid components and customer data.