Presentation is loading. Please wait.

Presentation is loading. Please wait.

Frankfurt (Germany), 6-9 June 2011 IT COMPLIANCE IN SMART GRIDS Martin Schaefer – Sweden – Session 6 – 0210.

Published byAleesha Webb Modified over 9 years ago

Similar presentations

Presentation on theme: "Frankfurt (Germany), 6-9 June 2011 IT COMPLIANCE IN SMART GRIDS Martin Schaefer – Sweden – Session 6 – 0210."— Presentation transcript:

1 Frankfurt (Germany), 6-9 June 2011 IT COMPLIANCE IN SMART GRIDS Martin Schaefer – Sweden – Session 6 – 0210

2 Frankfurt (Germany), 6-9 June 2011 1. Smart Grid Architecture 2. Risk Scenarios 3. Comparison with other markets 4. Methods 5. Certification IT COMPLIANCE IN SMART GRIDS Martin Schaefer – Sweden – Session 6 – 0210

3 Frankfurt (Germany), 6-9 June 2011 Martin Schaefer – Sweden – Session 6 – 0210 IT COMPLIANCE IN SMART GRIDS Smart Grid Architecture Based on: NIST SP 1108 NIST Framework and Roadmap for Smart Grid Interoperability Standards, Release 1.0

4 Frankfurt (Germany), 6-9 June 2011 Martin Schaefer – Sweden – Session 6 – 0210 IT COMPLIANCE IN SMART GRIDS Smart Grid Architecture  Challenges: Introduction and expansion of a communication network for the current and future electricity grid Introduction of new technology Introduction of intelligent control and connectivity between different domains  Constraints: Long-term use of legacy assets in the domains of operation, bulk generation, transmission and distribution In some parts, use of a large-scale homogeneous technical environment, e.g. Smart Meters There are currently no common or aligned standards designed to achieve an architecturally compatible technology.

5 Frankfurt (Germany), 6-9 June 2011  Customer Data – Confidentiality Aggregating and sharing of customer data throughout different grid actors Different legal environments  Fraud – Integrity Tampering with customer data Energy theft and fraud IT COMPLIANCE IN SMART GRIDS Risk Scenarios Martin Schaefer – Sweden – Session 6 – 0210

6 Frankfurt (Germany), 6-9 June 2011  Technical threats IT COMPLIANCE IN SMART GRIDS Risk Scenarios Martin Schaefer – Sweden – Session 6 – 0210 IntentionalUnintentional Malicious E.g. a dedicated attack by criminal individuals, groups, terrorists or nations E.g. an undirected attack by a ‘common’ Botnet virus Non-malicious E.g. a disgruntled employee/ outsourcing vendor intentionally manipulates sensor data E.g. malfunction of software or procedures

7 Frankfurt (Germany), 6-9 June 2011  Financial Market Sarbanes-Oxley Act (SOX)  adapted to EuroSOX, JSOX - global rule set for activities such as governance, reporting and enterprise risk management. COSO  guidance on organizational governance, business ethics, internal control, enterprise risk management, fraud and financial reporting COBIT  control framework for technical compliance IT COMPLIANCE IN SMART GRIDS Comparison with other markets Martin Schaefer – Sweden – Session 6 – 0210

8 Frankfurt (Germany), 6-9 June 2011  Compliance for Telecommunications Signaling System 7 (SS7)  enabling interconnectivity between large networks  basis for telecommunication services that are compliant with different legal requirements EU formed Body of European Regulators for Electronic Communications (BEREC)  Ensure compliance with EU regulatory framework IT COMPLIANCE IN SMART GRIDS Comparison with other markets Martin Schaefer – Sweden – Session 6 – 0210

9 Frankfurt (Germany), 6-9 June 2011  Existing frameworks/standards (ISA 99 series, NERC Critical Infrastructure Protection (CIP) series, NIST 800-82)  Maps or models to apply such standards (e.g. Zone Model / Zoning Principles)  Avoid compliance with standard A implies non-compliance with standard B  Currently heavy technical focus  Currently no common / complete standards that steer and enable Smart Grid development considering all aspects (customer privacy, technical issues, fraud)  Target: framework of mutually compliant standards to enable compliant development of Smart Grids and build trust / acceptance IT COMPLIANCE IN SMART GRIDS Methods Martin Schaefer – Sweden – Session 6 – 0210

10 Frankfurt (Germany), 6-9 June 2011  From competitive advantage to operational requirement Quality Management ISO 9000 series IT Service Management ISO 20000 series Information Security Management ISO 27000 series  Certifications for certain areas are available, giving currently competitive advantage  Focus area for certification could be Smart Meter (huge amount of homogeneous devices) IT COMPLIANCE IN SMART GRIDS Certification Martin Schaefer – Sweden – Session 6 – 0210

11 Frankfurt (Germany), 6-9 June 2011  Increasing interconnectivity in Smart Grid architecture  New risk scenarios e.g. increasing amount of customer data throughout different grid actors  IT Compliance with a framework of mutually compliant standards could help to build secure systems and trust  Certification - from competitive advantage to operational requirement IT COMPLIANCE IN SMART GRIDS Summary Martin Schaefer – Sweden – Session 6 – 0210

12 Frankfurt (Germany), 6-9 June 2011 IT COMPLIANCE IN SMART GRIDS Thank you for your attention! Martin Schaefer – Sweden – Session 6 – 0210

Download ppt "Frankfurt (Germany), 6-9 June 2011 IT COMPLIANCE IN SMART GRIDS Martin Schaefer – Sweden – Session 6 – 0210."

Similar presentations

Smart Grid: an Ontario Perspective Brian Hewson, Senior Manager Regulatory Policy Hamilton May 8, 2013.

Smart Grid: an Ontario Perspective Brian Hewson, Senior Manager Regulatory Policy Hamilton May 8, 2013.
Development and Operation of Active Distribution Networks: Results of CIGRE C6.11 Working Group (Paper 0311) Dr Samuel Jupe (Parsons Brinckerhoff) UK Member.

Development and Operation of Active Distribution Networks: Results of CIGRE C6.11 Working Group (Paper 0311) Dr Samuel Jupe (Parsons Brinckerhoff) UK Member.
Global Marketing Overview of Supply Chain Security Assurance Certification/membership in supply chain security programs –Different programs focus on particular.

Global Marketing Overview of Supply Chain Security Assurance Certification/membership in supply chain security programs –Different programs focus on particular.
ACG 6415 SPRING 2012 KRISTIN DONOVAN & BETH WILDMAN IT Security Frameworks.

ACG 6415 SPRING 2012 KRISTIN DONOVAN & BETH WILDMAN IT Security Frameworks.
Agenda COBIT 5 Product Family Information Security COBIT 5 content

Agenda COBIT 5 Product Family Information Security COBIT 5 content
Cyber Security and the Smart Grid George W. Arnold, Eng.Sc.D. National Institute of Standards and Technology (NIST) U.S. Department of Commerce

Cyber Security and the Smart Grid George W. Arnold, Eng.Sc.D. National Institute of Standards and Technology (NIST) U.S. Department of Commerce
Smart Grid - Cyber Security Small Rural Electric George Gamble Black & Veatch

Smart Grid - Cyber Security Small Rural Electric George Gamble Black & Veatch
Global Information Systems

Global Information Systems
Peter Brudenall & Caroline Evans- Simmons & Simmons Marsh Technology Conference 2005 Zurich, Switzerland. Managing the Security Landscape – Legal and Risk.

Peter Brudenall & Caroline Evans- Simmons & Simmons Marsh Technology Conference 2005 Zurich, Switzerland. Managing the Security Landscape – Legal and Risk.
Security Controls – What Works

Security Controls – What Works
Framework for Global Electronic Commerce Communications 411 Relevant Site: www.ecommerce.gov.

Framework for Global Electronic Commerce Communications 411 Relevant Site:
© 2006 IBM Corporation Introduction to z/OS Security Lesson 9: Standards and Policies.

© 2006 IBM Corporation Introduction to z/OS Security Lesson 9: Standards and Policies.
Information Security Governance and Risk Chapter 2 Part 1 Pages 21 to 69.

Information Security Governance and Risk Chapter 2 Part 1 Pages 21 to 69.
Managing a Smart Grid with Operational Efficiency Ray Bariso Executive Director – Solution Strategy.

Managing a Smart Grid with Operational Efficiency Ray Bariso Executive Director – Solution Strategy.
August 8, 2015ECI Confidential. AccessWave Smart Grid Market Trends& Applications Matthias Nass VP Field Marketing EMEA.

August 8, 2015ECI Confidential. AccessWave Smart Grid Market Trends& Applications Matthias Nass VP Field Marketing EMEA.
Information Systems Controls for System Reliability -Information Security-

Information Systems Controls for System Reliability -Information Security-
TIA/ANSI Presentation on New and Novel Topic (NNT) Agenda Item 7 “Smart Grid” David Su DOCUMENT #:GSC14-PLEN-013 R1 FOR:Presentation SOURCE:TIA/ANSI/NIST.

TIA/ANSI Presentation on New and Novel Topic (NNT) Agenda Item 7 “Smart Grid” David Su DOCUMENT #:GSC14-PLEN-013 R1 FOR:Presentation SOURCE:TIA/ANSI/NIST.
EU Commission Task Force for Smart Grids Expert Group 3: Roles and Responsibilities of Actors involved in the Smart Grids Deployment Samia Benrachi-Maassam.

EU Commission Task Force for Smart Grids Expert Group 3: Roles and Responsibilities of Actors involved in the Smart Grids Deployment Samia Benrachi-Maassam.
Halifax, 31 Oct – 3 Nov 2011ICT Accessibility For All IEEE-SA Smart Grid Steve Mills, President, IEEE Standards Association Document No: GSC16-PLEN-47.

Halifax, 31 Oct – 3 Nov 2011ICT Accessibility For All IEEE-SA Smart Grid Steve Mills, President, IEEE Standards Association Document No: GSC16-PLEN-47.
Smart Grid Interoperability Standards George W. Arnold, Eng.Sc.D. National Coordinator for Smart Grid Interoperability National Institute of Standards.

Smart Grid Interoperability Standards George W. Arnold, Eng.Sc.D. National Coordinator for Smart Grid Interoperability National Institute of Standards.

Similar presentations

Ads by Google