DOE Introduces Supply Chain Cybersecurity Principles To Bolster Global Energy Infrastructure Security

Developed in collaboration with the Idaho National Laboratory, the U.S. Department of Energy (DOE) rolled out Supply Chain Cybersecurity Principles. These principles establish best practices for cybersecurity throughout the supply chain that support energy infrastructure and can help secure equipment and technologies before they are exploited by cyber actors seeking to cause destruction or disruption to critical infrastructure. Developed for manufacturers and end users alike, these principles create a framework to strengthen key technologies used globally to manage and operate electricity, oil, and natural gas systems.

According to Industrial Cyber, The Department of Energy’s Office of Cybersecurity, Energy Security, and Emergency Response (CESER) crafted the Supply Chain Cybersecurity Principles, incorporating feedback from industrial control systems (ICS) manufacturers and asset owners involved in CESER’s supply chain research. This development also integrates findings from the Idaho National Laboratory. CESER has established 10 Supply Chain Cybersecurity Principles specifically tailored for suppliers, alongside a separate set of 10 principles geared towards end-users.

Prominent energy sector suppliers and manufacturers such as GE Vernova, Schneider Electric, Hitachi Energy, Schweitzer Engineering Laboratories, Rockwell Automation, Siemens, Siemens Energy, and Honeywell have endorsed the principles, supporting enhanced security measures.

The agency is also launching an effort with its international government and industry partners to align the principles to existing requirements, develop guidance for interpreting and adopting the principles, and identify gaps where international coordination could advance supply chain security throughout the global energy sector.

Read More

Discover more from American Infrastructure

Subscribe now to keep reading and get access to the full archive.

Continue reading