Experts

  • Position : Business Consultant on Information Security
  • Affiliation : Сisco Systems
  • Position : Deputy minister
  • Affiliation : Ministry of Energy of the Russian Federation
complete list

Related articles

Natalia Romashkina, Dmitry Stefanovich, Alexey Markov

The monograph is devoted to topical issues of international security and strategic stability in the context of accelerated development of information and communication technologies. It justifies the importance of ensuring international information security. The monograph examines the possibility of ...

The White paper is intended to provide a guide for the incoming Biden-Harris administration, identifying possible early policy achievements and suggesting priorities for action over the coming months and years.

Within the first 100 days of taking office, the Biden-Harris administration can set in mo...

Security Index Launches Series of Publications on Protection of Critical Energy Infrastructure

25.03.2016

MOSCOW, MARCH 25. PIR PRESS – Security Index launches a series of publications on the protection of critical energy infrastructure from cyber threats. 

Nuclear security and protection of critical infrastructure are complex concepts that include measures to counter a constantly expanding list of threats. Due to the exponential development of information technology, cyber security of nuclear and critical energy infrastructure is among one of the primary objectives of national authorities in many countries. The Security Index Journal has begun to launch a series of publications on the protection of critical energy infrastructure from cyber threats. 

A couple of decades ago, e-mail hacking required advanced programming skills.  Today, the lightning-fast and anonymous attacks on banking systems, household appliances and medical devices connected to the Internet have become reality. The term cyberwarfare is spoken more frequently. The new era was heralded by the Stuxnet computer virus, which in 2010 attacked Iranian centrifuges for uranium enrichment, and set back the country’s nuclear program for a couple of years. In his interview with the Editor-in-Chief of the Security Index Olga Mostinskaya, Deputy Minister of Energy Yuri Sentyurin discussed the protection of critical energy infrastructure from cyber threats, existing gaps in legislation and plans for their elimination. 

The risk of cyber attacks on energy infrastructure is real: “The danger in cyberspace is real and growing. Certainly, this is a subject of discussion in various formats. By the way, our foreign partners are faced with the same problems. We should take seriously the statements of colleagues who point out signs of warfare in cyberspace. This is, no doubt, alarmist terminology, but these views should be taken into account, not neglected”. The situation is aggravated by the fact that there are hardly any mandatory standards in the field, and information security of critical energy infrastructure is left in the hands of the operators. There is also need for an action plan and coordination mechanism between different agencies in the case of an emergency caused by cyber incidents. Unfortunately, such a plan is not yet in place. “We are working along both tracks. We are trying to deal with the matter through an interdepartmental working group that brings together all of the stakeholders in order to avoid duplication of efforts” - said Yuriy Sentyurin.

The security of nuclear facilities is a priority of any country. The perimeter is guarded by armed security, and the newly designed nuclear power plants are robust enough to withstand a plane crash. Nevertheless, progress is not at a halt, and in addition to the traditional threats, new challenges are emerging, this time from cyberspace. In his article “Сybersecurity of nuclear facilities”, Alexey Lukatskiy, the business consultant for information security of Cisco presents a taxonomy of cyber attacks on facilities of critical infrastructure, built on the basis of location and nature of the threat source, as well as on the presence of intent. The expert explains that “information and automated systems that can be subject to internal or external, technical or human, accidental or malicious attacks may be used in completely different processes at nuclear facilities. Such diversity of protected processes and systems requires a comprehensive approach to their security.” 

For questions regarding the Security Index Journal, you can contact the Editor-in-Chief  Olga Mostinskaya +7 (495) 987 19 15 or by e-mail mostinskya at pircenter.org.

Comments

 
 
loading