Pacific Northwest National Laboratory is working with federal-and private-sector representatives to develop a cyber security self-assessment method (the Method) for use in the electric power industry. The Method will assist facility owners in identifying and characterizing cyber vulnerabilities, potential adverse consequences, cyber security risk levels, and cost-effective protection and mitigation measures. The Method supports a comprehensive, expeditious assessment that can be integrated efficiently into normal business practices. Personnel in information systems, plant operations, and security all would contribute to the assessment. The risk assessment stage of the Method evaluates both external and internal threats. In the risk management stage, potential protection and mitigation measures are evaluated based on risk reduction; the costs of purchasing, installing, operating, and maintaining new protection and mitigation measures; and changes in the cost of doing business that may be associated with the implementation of new measures.

This content is only available via PDF.
You do not currently have access to this content.