Cybersecurity Guidelines for Power Sector

Context

The government released cybersecurity guidelines for the ‘power sector’. The guidelines are a precursor to cybersecurity regulations that the Central Electricity Authority is working on.

Key-highlights of the guidelines

• The CEA has placed regulations under the Central Electricity Authority (Technical Standards for Connectivity to the Grid) (Amendment) Regulations, 2019.
• It lays down:
  • a cyber assurance framework
  • strengthens the regulatory framework
  • puts in place mechanisms for security threat early warning
  • vulnerability management and response to security threats
  • secures remote operations and services

Applicability of the norms

• The norms are applicable to all operational organizations and system integrators, equipment manufacturers, suppliers, service providers, and Information Technology (IT) hardware and OEMs (Manufacturers) software operating systems in the Indian power supply system.
• Responsible enterprises include power generation facilities, distribution facilities, transmission companies and load dispatch centres among others.

Significance of the move

• It will promote cybersecurity research and development and open up a market for infra cyber surveillance to the public and private sectors in the country.