Connect with us

Hi, what are you looking for?



Security of North American Energy Grid Tested in GridEx Exercise

A major exercise whose goal was to test the cyber and physical security of North America’s grid has enabled the energy industry and governments to review and improve incident response plans and collaboration.

A major exercise whose goal was to test the cyber and physical security of North America’s grid has enabled the energy industry and governments to review and improve incident response plans and collaboration.

The grid security exercise, GridEx V, was organized last week by the North American Electric Reliability Corporation (NERC) and it was hosted by its Electricity Information Sharing and Analysis Center (E‑ISAC).

According to NERC, over 6,500 participants representing more than 425 government and energy sector organizations in the United States, Canada and Mexico took part in the two-day exercise. In comparison, representatives of 370 organizations took part in the previous GridEx, which took place in 2017, but the number of participants was roughly the same.

It’s worth noting, however, that GridEx V also invited representatives of the natural gas, electrical equipment manufacturing, finance, and telecommunications sectors.

Described as the largest exercise of its kind, GridEx V aimed to test responses to cyber and physical security incidents and threats. Objectives included exercising incident response strategies, expanding the response of local and regional stakeholders, increasing participation of the supply chain, and improving communications.

SecurityWeek has reached out to NERC for more information about the simulated scenario, but the organization says it does not speak in detail about the scenario.

However, UtilityDive reported that the simulated attack targeted Consolidated Edison (Con Ed), which provides electricity and gas to New York City and Westchester. The scenario involved gas outages caused by a loss of supply, electric outages caused by a substation explosion, a water outage, and a cyberattack that resulted in the exposure of customer information. The scenario involved both physical and cyber attacks and unfolded over a period of several weeks.

Advertisement. Scroll to continue reading.

“NERC’s GridEx series offers an invaluable opportunity for industry and government officials at all levels to evaluate crisis communications and security and response plans in order to identify new risks and develop actionable mitigation strategies,” said Tom Kuhn, president of the Edison Electric Institute (EEI). “Through the CEO-led Electricity Subsector Coordinating Council (ESCC), GridEx also helps us to enhance cross-sector coordination and develop a more detailed understanding of interdependencies and potential impacts to other critical infrastructure sectors.”

A report detailing GridEx V is expected to be published in March 2020.

The exercise comes after earlier this year a power utility in the United States reported interruptions to electrical system operations as a result of a denial-of-service (DoS) attack. It was revealed recently that the attack hit sPower, a Utah-based power producer that relies on wind and solar technologies, and it involved the exploitation of a known vulnerability affecting Cisco firewalls.

Related: U.S. to Help Secure Baltic Energy Grid Against Cyber Attacks

Related: NIST Working on Industrial IoT Security Guide for Energy Companies

Related: GAO Says Electric Grid Cybersecurity Risks Only Partially Assessed

Written By

Eduard Kovacs (@EduardKovacs) is a managing editor at SecurityWeek. He worked as a high school IT teacher for two years before starting a career in journalism as Softpedia’s security news reporter. Eduard holds a bachelor’s degree in industrial informatics and a master’s degree in computer techniques applied in electrical engineering.

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join security experts as they discuss ZTNA’s untapped potential to both reduce cyber risk and empower the business.


Join Microsoft and Finite State for a webinar that will introduce a new strategy for securing the software supply chain.


Expert Insights

Related Content

Application Security

Cycode, a startup that provides solutions for protecting software source code, emerged from stealth mode on Tuesday with $4.6 million in seed funding.


The changing nature of what we still generally call ransomware will continue through 2023, driven by three primary conditions.

CISO Strategy

SecurityWeek spoke with more than 300 cybersecurity experts to see what is bubbling beneath the surface, and examine how those evolving threats will present...


A recently disclosed vBulletin vulnerability, which had a zero-day status for roughly two days last week, was exploited in a hacker attack targeting the...

CISO Conversations

Joanna Burkey, CISO at HP, and Kevin Cross, CISO at Dell, discuss how the role of a CISO is different for a multinational corporation...

CISO Conversations

In this issue of CISO Conversations we talk to two CISOs about solving the CISO/CIO conflict by combining the roles under one person.

Risk Management

The supply chain threat is directly linked to attack surface management, but the supply chain must be known and understood before it can be...

CISO Strategy

Security professionals understand the need for resilience in their company’s security posture, but often fail to build their own psychological resilience to stress.