1. Strengthening Local and Regional Regulatory Capacities for Cyber Resilience

Public Utility Commissions (PUCs) play a key role in governing critical infrastructure cyber-resilience.  This project focuses on developing an understanding of best practices and gaps among PUCs in building cyber-resilience through a detailed case study consisting of document analysis and key informant interviews. It is funded by the Department of Homeland Security through the Critical Infrastructure Resilience Institute, a DHS Center of Excellence. We are currently seeking relevant policymakers and practitioners to interview for the project, so please contact me if you would like to be interviewed.

Project Description

Longer article

 

2. Federal Electric Power Sector Cybersecurity Regulations and Cyber Resilience

The North American Electric Reliability Corporation Critical Infrastructure Protection (NERC CIP) standards are mandatory cybersecurity standards designed to ensure that the power grid is resilient to cyber incidents. The project evaluates the effectiveness of the NERC CIP standards in building the cyber resilience of the electric grid. There are few mandatory cybersecurity standards for critical infrastructures, and assessing the impact of the standards can provide insight into the role of regulations for supporting the resilience of complex systems. The project is funded by the Department of Homeland Security through the Critical Infrastructure Resilience Institute.

Project description

 

 

3. Defining Cyber-Resilience

The term ‘cyber-resilience’ is widely used by practitioners, policymakers, and academics, particularly in the context of critical infrastructure cybersecurity. Using a variety of methods — including a short online questionnaire — we are examining how cyber-resilience is being employed by various stakeholder groups. Doing so will help establish a lexicon for the term and shed light on the practices being undertaken for cyber-resilience. We are currently seeking respondents to complete our questionnaire, so please click on the link below if you would like to contribute to building a meaning of cyber-resilience. The questionnaire is inspired by work by Ute and and Rhys Kelly on the meaning of resilience in the context of environmental sustainability.

Defining Cyber Resilience Questionnaire