Over a million developers have joined DZone.
{{announcement.body}}
{{announcement.title}}

NCCoE – NIST Centralizing Situational Awareness in Energy Companies

DZone's Guide to

NCCoE – NIST Centralizing Situational Awareness in Energy Companies

Industry leaders announce the release of a guide that outlines the best methodologies for detecting and remediating security anomalies.

· Security Zone
Free Resource

Discover how to protect your applications from known and unknown vulnerabilities.

There’s some cybersecurity news to share coming out of the energy sector.

Waratek, along with a group of companies including Hewlett-Packard Enterprise, Siemens, and RSA, worked closely with the National Cybersecurity Center of Excellence (NCCoe) to develop an example solution for electric companies to alert their staff to potential or actual cyber attacks directed at the grid. The example draft outlines the implementation of this solution and comments from the public are sought until April 17, 2017.

The NCCoE, a part of the National Institutes of Standards and Technology (NIST), recently released the guide to explore the methods utilities can use to more readily detect and remediate anomalous conditions, investigate the chain of events that led to the anomalies, and share findings with other energy companies. The guide shows how companies can control physical and logical access to resources across the energy sector using standards, best practices, and commercially available products in a step-by-step format.

The draft is available for download on the NCCoE website and public comments are encouraged on this step-by-step guide, which is modular and suitable for organizations of all sizes. It also maps security characteristics to guidance and best practices from NIST and other standards organizations. Remember, the NCCoE is seeking comments on this draft through April 17th.

“Collaborating with stakeholders such as members of industry, technology providers, and integrators to produce viable cybersecurity solutions is key to the NCCoE’s success,” said Jim McCarthy, NCCoE Senior Security Engineer and project lead for NCCoE’s energy sector team. “The Situational Awareness practice guide is another successful example of how these stakeholders engage with NCCoE to produce solutions to real word problems that can be adopted to reduce the level of risk for owners and operators in the Energy Sector.”

The NCCoE is a collaborative hub where industry organizations, government agencies, and academic institutions work together to address businesses’ most pressing cybersecurity challenges.

Waratek and the NCCoE both agree that the guide helps meet a critical cybersecurity need and would love to hear what you think. Download the guide and provide your thoughts on the NCCoE website.

Better communication tactics lead to faster resolutions.

NIST Vendors

*While the example solution uses certain products, including Waratek, NIST, and the NCCoE do not endorse these products. The guide presents the characteristics and capabilities of those products, which an organization’s security experts can use to identify similar standards-based products that will fit within with their organization’s existing tools and infrastructure.

Find out how Waratek’s award-winning virtualization platform can improve your web application security, development and operations without false positives, code changes or slowing your application.

Topics:
security ,cyber attack ,hacking ,cyber security

Published at DZone with permission of James Lee, DZone MVB. See the original article here.

Opinions expressed by DZone contributors are their own.

{{ parent.title || parent.header.title}}

{{ parent.tldr }}

{{ parent.urlSource.name }}