Today, February 15th 2022, ENCS held its annual General Assembly. The Assembly appointed Wolfgang Löw, CISO of EVN, as the new Chairman of the ENCS Assembly Committee for a two year’s term. “Security of critical infrastructure, especially the power grid, is a top priority in Europe” said Wolfgang Löw. “The next two years the Assembly Committee will work with the ENCS management board to assure expert support for the European regulatory process and implementation of ENCS best practices across Europe”. Gennaro Fiorenza, Head of TLC and Cyber Security Competence Center of Enel, was newly appointed as Assembly Committee member. The Assembly unanimously approved the ENCS Security Programs for 2022.
Community building
ENCS has continued to expand its community of members and partners. Both ENEDIS and REN joined ENCS in 2021 as members. ENCS expanded her scope of activities in providing Red Team Blue Team training to the water sector and engaging with National Competent Authorities for the energy sector in knowledge sharing sessions. ENCS partnered with SmartGrid Forums on the IEC 61850 week and entered into a partnership with EE-ISAC.
ENCS Security Programs
ENCS will continue the long-term work in the Policy, Architecture and Operations Programs with a continued focus on supporting the development and future implementation of the upcoming Network Code on Cybersecurity.
In the 2021 program, ENCS organized 45 highly attended community events to further leverage the trusted information and knowledge sharing within the European grid security expert community. Important contributions were realized by ENCS in the drafting of the Network Code Cybersecurity and work continued on product assurance and advancing security requirements for grid components, paving the way for a European certification scheme. ENCS security requirements, best practices and position papers are available through the ENCS portal.
2021 highlights include awareness raising of EV security, developing next generation smart meter security requirements and a security requirements catalogue for smart grid components compatible with IEC 62443, and lab tests of OT security sensors.
In the 2022 policy program ENCS will focus on supporting ENTSO-E and EU DSO entity with the network code preparations. ENCS will help prepare for the European risk assessments planned for the network code. Knowledge sharing on implementing an information security management system (ISMS), a key requirement in the network code, will be done through the ISMS expert group.
In the architecture program, ENCS will further align its requirements sets with the European cybersecurity certification schemes being developed under the cybersecurity act. The sets may then be used as the harmonized cybersecurity procurement requirements that ENTSO-E and the EU DSO entity will develop under the network code.
In the operations program, ENCS will work on a maturity model for Security Operations Center (SOC) for OT. The model will help members to meet the requirements on SOCs in the network code.