LAPSE:2023.14703
Published Article
LAPSE:2023.14703
EE-ISAC—Practical Cybersecurity Solution for the Energy Sector
March 1, 2023
Abstract
A recent survey of cybersecurity assessment methods proposed by the scientific community revealed that their practical adoption constitutes a great challenge. Further research that aimed at identifying the reasons for that situation demonstrated that several factors influence the applicability, including the documentation level of detail, the availability of supporting tools, and the continuity of support. This paper presents the European Energy Information Sharing and Analysis Centre (EE-ISAC)—a cybersecurity platform for the energy sector that has been adopted by multiple organisations. The platform facilitates sharing information about cybersecurity incidents, countermeasures, and assessment results. Prospectively, it is envisaged to be integrated with the threat intelligence platform that enables real-time situational awareness. By considering both fault and attack scenarios together, threat awareness can be mapped onto operational contexts to prioritise decisions and responses. This paper analyses EE-ISAC’s approach based on the conceptual applicability framework developed during the research, to improve the applicability and usefulness of this platform for energy sector participants and to identify areas that require further development.
A recent survey of cybersecurity assessment methods proposed by the scientific community revealed that their practical adoption constitutes a great challenge. Further research that aimed at identifying the reasons for that situation demonstrated that several factors influence the applicability, including the documentation level of detail, the availability of supporting tools, and the continuity of support. This paper presents the European Energy Information Sharing and Analysis Centre (EE-ISAC)—a cybersecurity platform for the energy sector that has been adopted by multiple organisations. The platform facilitates sharing information about cybersecurity incidents, countermeasures, and assessment results. Prospectively, it is envisaged to be integrated with the threat intelligence platform that enables real-time situational awareness. By considering both fault and attack scenarios together, threat awareness can be mapped onto operational contexts to prioritise decisions and responses. This paper analyses EE-ISAC’s approach based on the conceptual applicability framework developed during the research, to improve the applicability and usefulness of this platform for energy sector participants and to identify areas that require further development.
Record ID
Keywords
applicability, cybersecurity, information sharing, organisational management, situational awareness, threat intelligence
Subject
Suggested Citation
Wallis T, Leszczyna R. EE-ISAC—Practical Cybersecurity Solution for the Energy Sector. (2023). LAPSE:2023.14703
Author Affiliations
Journal Name
Energies
Volume
15
Issue
6
First Page
2170
Year
2022
Publication Date
2022-03-16
ISSN
1996-1073
Version Comments
Original Submission
Other Meta
PII: en15062170, Publication Type: Journal Article
Record Map
Published Article
LAPSE:2023.14703
This Record
External Link
https://doi.org/10.3390/en15062170
Publisher Version
Download
Meta
Record Statistics
Record Views
192
Version History
[v1] (Original Submission)
Mar 1, 2023
Verified by curator on
Mar 1, 2023
This Version Number
v1
Citations
Most Recent
This Version
URL Here
https://psecommunity.org/LAPSE:2023.14703
Record Owner
Auto Uploader for LAPSE
Links to Related Works
(1.47 seconds) 0.09 + 0.11 + 0.68 + 0.23 + 0.01 + 0.1 + 0.04 + 0 + 0.06 + 0.13 + 0 + 0.01