The rising threat in the cyber space has made it inevitable for governments worldwide to initiate proactive measures to secure crucial installations. The recent attack on Iran nuclear facilities and other industrial installations across the world have affirmed the concerns of cyber security specialists on the threats in the IT environment. Recently, the U.S. Government Accountability Office (GAO) has cautioned against cyber security challenges for electricity grids in the country. While the GAO has noted the progress achieved in framing cyber security guidelines, the grid faces hurdles such as regulatory constraints, treating security as a compliance activity, lack of information sharing mechanism, lack of inbuilt security systems and lack of metrics for cyber security assessment.
A cyber-attack on a critical installation such as an electricity grid or smart grid may disrupt power supply and bring all business activities, industrial production, rail and road transport services to a halt. The ensuing chaos may pose risk to human life. The GAO has urged the National Institute of Standards and Technology (NIST) to revise the cyber security guidelines and address the missing challenges.
One of the major constraints in strengthening cyber security is changing the mindset of organizations, which considers security as only a compliance activity. Lack of security prioritization may result in gaps in the IT infrastructure, which could be exploited by malicious attackers. In-depth evaluation of security status through penetration testers is crucial to detect and rectify security flaws.
Proper inter and intra-industry is coordination is crucial to understand different perspectives on cyber security and create a common framework to face security threats. However, lack of information sharing mechanism acts as a hindrance. Again diverse risks require different responses. Lack of metrics to assess cyber security impedes risk prioritization. Moreover, regular IT training programs for employees can help them in identifying and prioritizing risks.
Protection of critical infrastructural facilities and national assets is crucial for the continued progress of a country. Therefore, proactive steps are required to deal with the challenges posed by cyber-attacks. A proactive approach also makes it necessary to educate users on the risks and benefits from smart grids and significance of cyber security through online training programs and video clips.
Nov 20, 2011
99 Views
