The increasing cybersecurity threat and COVID-19 are causing challenges everywhere, including in the energy sector. Today, the European Network for Cyber Security (ENCS), Association of European Distribution System Operators (E.DSO), and the European Network of Transmission System Operators for Electricity (ENTSO-E), hosted the first of two webinars to discuss some of these challenges.
Leading cybersecurity experts from the grid operator community, public organisations and industry discussed actual and emerging threats, the most recent regulatory developments, and the main challenges connected to data sharing. It was concluded that only with harmonization of efforts in the areas of security requirements, scoping for Information Security Management Systems and knowledge sharing, the rapidly increasing challenges can be managed.
In the opening keynote session, Ms. Catharina Sikow-Magny, Director Internal Energy Market, DG ENER, highlighted European Commission’s growing commitment to strengthen EU’s leadership on digitalization and cybersecurity, especially in the light of the energy transition and EU recovery, stating that “Access, trust and interoperability for data are the three pillars for information to flow in Europe. Cybersecurity is essential for a strong & sustainable energy system in Europe”.
Saâd Kadhi, Head of CERT-EU, European Commission, highlighted that “The threat landscape is continuously evolving and the attack surface is growing. Several nation-state threat actors are very well resourced and some criminal groups are adopting their playbooks. Targeted intrusions, ransomware attacks and other types of breaches are now customary. To keep them at bay, we have no choice but to share threat data, more efficiently and at a bigger scale, by building bridges across cybersecurity communities.”.
For Nicolas Richet, Head of Digital Section, ENTSO-E Secretariat, “This third edition of our joint cybersecurity events with E.DSO and ENCS has allowed us to demonstrate the grid operators’ commitment and continued efforts to enhance the reliability of the European power network”.
Maarten Hoeve, Technology Director ENCS, presented how vulnerabilities in DER infrastructure can be exploited to disrupt electricity supply. The stability of the electricity grid is becoming dependent on distributed energy resources (DER), such as solar panels and windmills. Security incidents at DER installations could lead to large disruptions of the electricity grid, even to the extent of a European black-out.
Concluding the event, Roberto Zangrandi, Secretary General of E.DSO, said that “After 3 years now, our joint update with key stakeholder on Cybersecurity has become a beacon for the electricity grid operators. This meeting in particular, and the next one, proves that only through joint efforts hacking dangers can be and will be tackled.”
The event highlighted the importance of security across critical business processes, harmonization of the approaches throughout Europe and the need to act now. You will find the slides of the event here. The recording will be available soon on our website.
A second webinar, focusing on NIS Directive, Cybersecurity Act and Network Code Cybersecurity, will be taking place on 21 October. Don’t forget to register here.