Additional information

Source: Web-site of vendor

The project has been delivered on schedule

The budget has not been exceeded

Functionality complies with task

Description

Vermont Electric Cooperative (VEC) enhanced the reliability, efficiency and cybersecurity of its utility power delivery services. By leveraging Nozomi Networks solution, VEC garnered significant improvements in industrial cybersecurity and operational productivity

The Challenge: Enhancing Security Profile while Increasing Operational Efficiency

Electric industry information sharing and confidential briefings from industry and government agencies worry Kris Smith, Manager of Operations Engineering at Vermont Electric Cooperative (VEC.) That’s because the responsibility for service interruptions to VEC’s members land squarely on his shoulders. “As with any utility, service reliability is paramount. And a robust cybersecurity program with robust cybersecurity platforms are how we ensure that reliability.”
In practice, promoting reliability means adopting the U.S. Office of Electricity Delivery and Energy Reliability’s (OE) mindset. Specifically, boosting VEC’s “cybersecurity preparedness” and “incident response” capabilities1.
Towards that end, Smith resolved to overcome several challenges that he faced. “[Prior to implementing the Nozomi Networks solution] we relied heavily on manual, time-consuming processes to administer our systems and mine data. Collating and analyzing large data sets in tabular format, from three different systems, was so resource intensive that it made applying a comprehensive, cybersecurity approach difficult."

VEC’s Goals

To ensure he chose an effective solution, Smith established strict criterion. First among them was a solution with a proven industry track record. “We didn’t want to be beta testers for newcomers in our space.”
Additionally, Smith wanted a solution that could:
• Automatically build an asset inventory, visualize assets and model their interactions
• Systematically detect and provide alerts concerning anomalies and potential threats
• Dramatically improve operational efficiency by:
· Replacing manual processes with automation features and capabilities
· Interfacing seamlessly with VEC’s existing systems
· Enabling the consolidation of data from networks onto a single platform
• Scale and adapt for future development, growth and support

The Solution: SCADAguardian Demonstrates its Value in Proof of Concept

“We selected Nozomi Networks because their SCADAguardian solution meets all of our requirements in terms of visualization, detection, response and administration, as well as being a platform for longterm development and support.”
The final decision, was based in part on the completion of a successful proof of concept (POC) project at VEC. Smith uses the SCADAguardian solution to consolidate ICS data for analysis, to visualize his assets and their relationships to one another, and to automate alerts to address anomalies and potential threats.
“It allows us to do a deep dive into the network protocols themselves, which supports both our cybersecurity and operational efficiency objectives.”

The Results: Improved Reliability, Cybersecurity and Productivity

A Proven Solution
Smith deployed a tried, tested and vetted solution so that he could focus on tuning, monitoring and maintaining his network to ensure its reliability and efficiency. “Not only do they have major deployments around the world to their credit, but Nozomi Networks specialists demonstrated that SCADAguardian delivers value in our environment. Most significantly, the solution has reinforced our cybersecurity program to help us advance our reliability goals.”

Enriched Cybersecurity-Visualization and Response
“Today, I can visualize all of my network components and see how they interact together,” says Smith. “I’ve also added IOCs [indicators of compromise] as I get them through the cybersecurity community. So, in a matter of moments, I can identify, and promptly address, any issues.”
Smith likes the automated cybersecurity and operational monitoring feature he gets through SCADAguardian. “When the system detects anomalies, I get email alerts in real time.”
Additionally, Smith notes that the Nozomi Networks solution’s comprehensive and integrated reports have “… enabled me to do more consistent reviews of my log data and system performance. And it allows me to respond more quickly and comprehensively to information that we get from our peers."
As a result, “Vermont Electric Cooperative enjoys a greatly enhanced security posture that reduces our exposure,” explains Smith. “So much so that with SCADAguardian in place, I have the peace of mind that lets me sleep at night.”

Greater Operational Efficiency

SCADAguardian gives Smith granular visibility into ICS operations. Specifically, the solution creates an asset inventory and automatically updates it. Furthermore, it visualizes VEC’s network and models the relationships between assets. Finally, artificial intelligence features allow SCADAguardian to learn traffic behavior patterns, and issue alerts/warnings when anomalies are detected. “We’ve also used this data to tune protocols to be more efficient and to eliminate some communication errors as well,” adds Smith.
These features combine to eliminate many of the timeintensive, manual tasks that Smith used to perform.“Previously, it took me two to three hours to go through dozens of pages of information from three systems,” explains Smith. “Today, some of the cybersecurity system reviews I do take me as little as 15 minutes. Overall, the Nozomi Networks solution has helped me gain back between 10-12 hours a week.”
The solution also helps Smith reduce time spent on troubleshooting and forensic activities. “SCADAguardian allows us to drill down in protocols for new and existing equipment to efficiently diagnose issues. Consequently, we’ve improved our operational performance and in some cases can avoid costly truck rolls.”

Details

Business tasks

Reduce Costs

Enhance Staff Productivity

Ensure Security and Business Continuity

Improve Customer Service

Reduce Production Timelines

Support Decision Making

Manage Risks

Problems

No control over data access

Unauthorized access to corporate IT systems and data

Poor timing of management decision making

Risk or Leaks of confidential information

Low quality of customer service

Malware infection via Internet, email, storage devices

No monitoring of corporate IT processes

High costs of routine operations

Low employee productivity

Risk of data loss or damage

Similar deployments

prev
next