Pacific Northwest National Laboratory is working with federal-and private-sector representatives to develop a cyber security self-assessment method (the Method) for use in the electric power industry. The Method will assist facility owners in identifying and characterizing cyber vulnerabilities, potential adverse consequences, cyber security risk levels, and cost-effective protection and mitigation measures. The Method supports a comprehensive, expeditious assessment that can be integrated efficiently into normal business practices. Personnel in information systems, plant operations, and security all would contribute to the assessment. The risk assessment stage of the Method evaluates both external and internal threats. In the risk management stage, potential protection and mitigation measures are evaluated based on risk reduction; the costs of purchasing, installing, operating, and maintaining new protection and mitigation measures; and changes in the cost of doing business that may be associated with the implementation of new measures.
- Engineering and Technology Management Group
A Cyber Security Self-Assessment Method for Critical Infrastructure Protection
- Views Icon Views
- Share Icon Share
- Search Site
Glantz, CS, Bass, RB, Cash, JR, Coles, GA, Currie, AJ, Gower, DJ, Heilman, JJ, Lammers, MD, & Thomas, JL. "A Cyber Security Self-Assessment Method for Critical Infrastructure Protection." Proceedings of the ASME 2003 International Mechanical Engineering Congress and Exposition. Engineering/Technology Management: Safety Engineering and Risk Analysis, Technology and Society, Engineering Business Management, and Homeland Security. Washington, DC, USA. November 15–21, 2003. pp. 195-198. ASME. https://doi.org/10.1115/IMECE2003-42695
Download citation file: