Last week, ENCS chaired the discussions at Active Communications Internationals (ACIs) annual cyber security conference.

The event brought together a broad coalition of experts from infrastructure owners, grid operators, NGOs, consultancy firms and the research community. Together, the goal was to discuss how to shift to the next level of cyber security in the utility domain.

ENCSs contribution to the conference focused on the current threat landscape and novel approaches towards risk management. We shared a short analysis about the Industroyer attack in Ukraine, highlighting that, though the malware did not affect the grid at an operational level, it was aimed at electricity SCADA systems and security measures need to be taken to stop more damaging attacks. We also talked about the rapid increase of interconnectivity and the rise of artificial intelligence in the domain, emphasizing the need to raise security standards as a result.

Other subjects under the spotlight at the conference included implementing a risk management culture within utilitiesinsights into the equal budgeting of IT and OT, public-private partnerships for cyber security, and big data for advanced security.