SEL recently joined the Department of Energy (DOE) Cyber Testing for Resilient Industrial Control Systems (CyTRICS) program, which focuses on identifying vulnerabilities in the technology supply chain.
CyTRICS was created by the DOE Office of Cybersecurity, Energy Security and Emergency Response (CESER) to address the challenges stemming from increasingly complex global technology supply chains. On a volunteer basis, companies submit their equipment, which is then tested and analyzed at National Laboratories to confirm the security of software and firmware components.
According to CESER, the CyTRICS program takes a standardized approach across its key elements, including:
- A standardized testing process to produce consistency and compatibility, no matter where testing takes place.
- A standardized format to report vulnerabilities and enumeration to the CyTRICS database for sector-wide analyses.
- A standardized vendor agreement to generate joint action on vulnerability disclosure and mitigation.
The SEL mission to make electric power safer, more reliable and more economical has been a constant for over 35 years — and our emphasis on cyber and supply chain security has been central to that effort since our founding. We understand that partnering with DOE on the CyTRICS program further enhances SEL’s commitment to providing industry-leading products for critical infrastructure.
As the enabler of all critical infrastructures, the energy sector must remain vigilant to ensure the integrity and reliability of the nation’s delivery systems and components. The participation of industry-leading companies in the CyTRICS program is an important piece of the ongoing mission to ensure national security.