The six biggest cybersecurity risks facing the utilities industry
The utilities industry is rapidly modernizing its infrastructure, adding more digitized equipment and connectivity across devices, plants, and systems. This evolution to “smart infrastructure” represents a positive, paradigm shift for the industry.
Unfortunately, the security policies of many utilities have not evolved along with it, leaving them incredibly vulnerable.
Utilities are investing heavily to modernize infrastructure. In fact, ABI Research projects that the industry will spend US$14 billion a year between 2018 and 2023 — a total of US$84 billion over that time period.
While investments in digital infrastructure will remain very high over the next several years, investments in securing that infrastructure will lag behind. Unfortunately, there is a growing gap between threats and spending — only 55% of the total security spend in the next 5 years will be spent on securing smart infrastructure.
By 2023, connected utility infrastructure will have essentially doubled in size, exposing utility companies to a myriad of cybersecurity risks. These are the 6 most critical, and pressing, risks:
- Boundary protection (undetected unauthorized activity in critical systems)
- Physical access control (unauthorized physical access to maliciously
- Allocation of resources
- Least functionality (increased vectors for malicious party access)
- Identification and authentication (lack of accountability and traceability)
- Account management (compromised unsecured password communications)
As these threats continue to mount, it’s imperative for companies within the utility space to deploy secure IT/OT solutions.