{"product_id":"building-an-effective-security-program-for-distributed-energy-resources-and-systems-9781118949047","title":"Building an Effective Security Program for","description":"\u003cb\u003eBook Synopsis\u003c\/b\u003e\u003cbr\u003eBuilding an Effective Security Program for Distributed Energy Resources and Systems Build a critical and effective security program for DERsBuilding an Effective Security Program for Distributed Energy Resources and Systems requires a unified approach to establishing a critical security program for DER systems and Smart Grid applications. The methodology provided integrates systems security engineering principles, techniques, standards, and best practices.   This publication introduces engineers on the design, implementation, and maintenance of a security program for distributed energy resources (DERs), smart grid, and industrial control systems. It provides security professionals with understanding the specific requirements of industrial control systems and real-time constrained applications for power systems. This book:Describes the cybersecurity needs for DERs and power grid as critical infrastructureIntroduces the information security principles to assess and manage the security an\u003cbr\u003e\u003cbr\u003e\u003cb\u003eTable of Contents\u003c\/b\u003e\u003cbr\u003e\u003cp\u003ePart I Understanding Security and Privacy Problem\u003c\/p\u003e \u003cp\u003e1 Security\u003c\/p\u003e \u003cp\u003e1.1 Introduction\u003c\/p\u003e \u003cp\u003e1.2 Smart Grid\u003c\/p\u003e \u003cp\u003e1.2.1 Traditional Power Grid Architecture\u003c\/p\u003e \u003cp\u003e1.2.2 Smart Grid Definitions\u003c\/p\u003e \u003cp\u003e1.2.3 Drivers for Change\u003c\/p\u003e \u003cp\u003e1.2.4 Smart Grid Communication Infrastructure\u003c\/p\u003e \u003cp\u003e1.3 Distributed Energy Resources\u003c\/p\u003e \u003cp\u003e1.3.1 DER Characteristics\u003c\/p\u003e \u003cp\u003e1.3.2 DER Uses\u003c\/p\u003e \u003cp\u003e1.3.3 DER Systems\u003c\/p\u003e \u003cp\u003e1.3.4  Microgrid\u003c\/p\u003e \u003cp\u003e1.3.5 Virtual Power Plant\u003c\/p\u003e \u003cp\u003e1.4 Scope of Security and Privacy\u003c\/p\u003e \u003cp\u003e1.4.1 Security for the Smart Grid\u003c\/p\u003e \u003cp\u003e1.4.2 Privacy\u003c\/p\u003e \u003cp\u003e1.4.3 The Need for Security and Privacy\u003c\/p\u003e \u003cp\u003e1.5 Computing and Information Systems for Business and Industrial Applications\u003c\/p\u003e \u003cp\u003e1.5.1 Information Systems Classification\u003c\/p\u003e \u003cp\u003e1.5.2 Information Systems in Power Grids\u003c\/p\u003e \u003cp\u003e1.5.3 DER Information Systems\u003c\/p\u003e \u003cp\u003e1.6  Integrated Systems in a Smart Grid\u003c\/p\u003e \u003cp\u003e1.6.1 Trends\u003c\/p\u003e \u003cp\u003e1.6.2 Characteristics\u003c\/p\u003e \u003cp\u003e1.7 Critical Smart Grid Systems\u003c\/p\u003e \u003cp\u003e1.7.1 Industrial Control Systems\u003c\/p\u003e \u003cp\u003e1.7.2 SCADA Systems\u003c\/p\u003e \u003cp\u003e1.7.3 Energy Management Systems\u003c\/p\u003e \u003cp\u003e1.7.4 Advanced Meter Systems\u003c\/p\u003e \u003cp\u003e1.8 Standards, Guidelines, and Recommendations\u003c\/p\u003e \u003cp\u003e1.8.1 Overview of Various Standards\u003c\/p\u003e \u003cp\u003e1.8.2 Key Standard Attributes and Conformance\u003c\/p\u003e \u003cp\u003e1.8.3 Smart Grid Standards\u003c\/p\u003e \u003cp\u003e1.8.3.1 Key Players in Smart Grid Standards Development\u003c\/p\u003e \u003cp\u003e1.8.3.2 How to Use Standards\u003c\/p\u003e \u003cp\u003e1.8.4 Cybersecurity Standards\u003c\/p\u003e \u003cp\u003e2 Advancing Security\u003c\/p\u003e \u003cp\u003e2.1 Emerging Technologies\u003c\/p\u003e \u003cp\u003e2.1.1 Internet of Things\u003c\/p\u003e \u003cp\u003e2.1.1.1 Characteristics of Objects\u003c\/p\u003e \u003cp\u003e2.1.1.2 Technologies\u003c\/p\u003e \u003cp\u003e2.1.1.3 IoT Applications\u003c\/p\u003e \u003cp\u003e2.1.1.4 IoT Security and Privacy\u003c\/p\u003e \u003cp\u003e2.1.1.5 Challenges\u003c\/p\u003e \u003cp\u003e2.1.2 Internet of Everything (IoE)\u003c\/p\u003e \u003cp\u003e2.1.3 Cyber-Physical Systems\u003c\/p\u003e \u003cp\u003e2.1.4 Cyber-Physical Systems Applications\u003c\/p\u003e \u003cp\u003e2.2 Cybersecurity\u003c\/p\u003e \u003cp\u003e2.2.1 Cybersecurity Definitions\u003c\/p\u003e \u003cp\u003e2.2.2 Understanding Cybersecurity Terms\u003c\/p\u003e \u003cp\u003e2.2.3 Cybersecurity Evolution\u003c\/p\u003e \u003cp\u003e2.3 Advancing Cybersecurity\u003c\/p\u003e \u003cp\u003e2.3.1 Contributing Factors to Cybersecurity Success\u003c\/p\u003e \u003cp\u003e2.3.2 Advancing Cybersecurity and Privacy Design\u003c\/p\u003e \u003cp\u003e2.4 Smart Grid Cybersecurity: A Perspective on Comprehensive Characterization\u003c\/p\u003e \u003cp\u003e2.4.1 Forces Shaping Cybersecurity\u003c\/p\u003e \u003cp\u003e2.4.2 Smart Grid Trends\u003c\/p\u003e \u003cp\u003e2.5 Security as a Personal, Organizational, National, and Global Priority\u003c\/p\u003e \u003cp\u003e2.5.1 Security as Personal Priority\u003c\/p\u003e \u003cp\u003e2.5.2 Protection of Private Information\u003c\/p\u003e \u003cp\u003e2.5.3 Protecting Cyberspace as a National Asset\u003c\/p\u003e \u003cp\u003e2.6 Cybersecurity for Electrical Sector as a National Priority\u003c\/p\u003e \u003cp\u003e2.6.1  Need for Cybersecurity Solutions\u003c\/p\u003e \u003cp\u003e2.6.2 The US Plans\u003c\/p\u003e \u003cp\u003e2.7 The Need for Security and Privacy Programs\u003c\/p\u003e \u003cp\u003e2.7.1 Security Program\u003c\/p\u003e \u003cp\u003e2.7.2 Privacy Program\u003c\/p\u003e \u003cp\u003e2.8 Standards, Guidelines, and Recommendations\u003c\/p\u003e \u003cp\u003e2.8.1 Electricity Sector Guidance\u003c\/p\u003e \u003cp\u003e2.8.2 International Collaboration\u003c\/p\u003e \u003cp\u003eReferences-Part1\u003c\/p\u003e \u003cp\u003ePart II Applying Security Principles to Smart Grid\u003c\/p\u003e \u003cp\u003e3 Principles of Cybersecurity\u003c\/p\u003e \u003cp\u003e3.1 Introduction\u003c\/p\u003e \u003cp\u003e3.2 Information Security\u003c\/p\u003e \u003cp\u003e3.2.1 Terminology\u003c\/p\u003e \u003cp\u003e3.2.2 Information Security Components\u003c\/p\u003e \u003cp\u003e3.2.3  Security Principles\u003c\/p\u003e \u003cp\u003e3.3 Security Related Concepts\u003c\/p\u003e \u003cp\u003e3.3.1 Basic Security Concepts\u003c\/p\u003e \u003cp\u003e3.3.2 The Basis for Security\u003c\/p\u003e \u003cp\u003e3.4 Characteristics of Information\u003c\/p\u003e \u003cp\u003e3.4.1 Data Transformation\u003c\/p\u003e \u003cp\u003e3.4.2 Data Characteristics\u003c\/p\u003e \u003cp\u003e3.4.3 Data Quality\u003c\/p\u003e \u003cp\u003e3.4.4 Information Quality\u003c\/p\u003e \u003cp\u003e3.4.5 System Quality\u003c\/p\u003e \u003cp\u003e3.4.6  Data Quality Characteristics Assigned to Systems\u003c\/p\u003e \u003cp\u003e3.5 Information Systems Characteristics\u003c\/p\u003e \u003cp\u003e3.5.1 Software Quality\u003c\/p\u003e \u003cp\u003e3.5.2 System Quality Attributes\u003c\/p\u003e \u003cp\u003e3.6 Critical Information Systems\u003c\/p\u003e \u003cp\u003e3.6.1 Critical Systems Characteristics\u003c\/p\u003e \u003cp\u003e3.6.2 Information Life Cycle\u003c\/p\u003e \u003cp\u003e3.6.3 Information Assurance\u003c\/p\u003e \u003cp\u003e3.6.4 Critical Security Characteristics of Information\u003c\/p\u003e \u003cp\u003e3.7 Information Security Models\u003c\/p\u003e \u003cp\u003e3.7.1 Evolving Models\u003c\/p\u003e \u003cp\u003e3.7.2 RMIAS Model\u003c\/p\u003e \u003cp\u003e3.7.3 Information Security Goals\u003c\/p\u003e \u003cp\u003e3.8 Standards, Guidelines, and Recommendations\u003c\/p\u003e \u003cp\u003e3.8.1 SGIP Catalog of Standards\u003c\/p\u003e \u003cp\u003e3.8.2 Cybersecurity Standards for Smart Grid\u003c\/p\u003e \u003cp\u003e4 Applying Security Principles to Smart Grid\u003c\/p\u003e \u003cp\u003e4.1 Smart Grid Security Goals\u003c\/p\u003e \u003cp\u003e4.2 DERs Information Security Characteristics\u003c\/p\u003e \u003cp\u003e4.2.1 Information Classification\u003c\/p\u003e \u003cp\u003e4.2.2 Information Classification Levels\u003c\/p\u003e \u003cp\u003e4.2.3 Information Evaluation Criteria\u003c\/p\u003e \u003cp\u003e4.3 Infrastructure\u003c\/p\u003e \u003cp\u003e4.3.1 Information Infrastructure\u003c\/p\u003e \u003cp\u003e4.3.2 Information Assurance Infrastructure\u003c\/p\u003e \u003cp\u003e4.3.3 Information Management Infrastructure\u003c\/p\u003e \u003cp\u003e4.3.4 Outsourced Services\u003c\/p\u003e \u003cp\u003e4.3.5 Information Security Management Infrastructure\u003c\/p\u003e \u003cp\u003e4.3.6 Cloud Infrastructure\u003c\/p\u003e \u003cp\u003e4.4 Smart Grid Infrastructure\u003c\/p\u003e \u003cp\u003e4.4.1 Hierarchical Structures\u003c\/p\u003e \u003cp\u003e4.4.2 Smart Grid Needs\u003c\/p\u003e \u003cp\u003e4.4.3 Cyber Infrastructure\u003c\/p\u003e \u003cp\u003e4.4.4 Smart Grid Technologies\u003c\/p\u003e \u003cp\u003e4.5 Building an Information Infrastructure for Smart Grid\u003c\/p\u003e \u003cp\u003e4.5.1 Various Perspectives\u003c\/p\u003e \u003cp\u003e4.5.2 Challenges and Relevant Approaches\u003c\/p\u003e \u003cp\u003e4.5.3 Common Employed Infrastructures\u003c\/p\u003e \u003cp\u003e4.6 IT Systems versus Industrial Control Systems Infrastructure\u003c\/p\u003e \u003cp\u003e4.6.1 Industrial Control Systems General Concepts\u003c\/p\u003e \u003cp\u003e4.6.2 Supervisory Control and Data Acquisition Systems (SCADA)\u003c\/p\u003e \u003cp\u003e4.6.3 Differences and Similarities\u003c\/p\u003e \u003cp\u003e4.7 Convergence Trends\u003c\/p\u003e \u003cp\u003e4.8 Standards, Guidelines, and Recommendations\u003c\/p\u003e \u003cp\u003e5 Planning Security Protection\u003c\/p\u003e \u003cp\u003e5.1 Threats and Vulnerabilities\u003c\/p\u003e \u003cp\u003e 5.1.1 Threats Characterization\u003c\/p\u003e \u003cp\u003e5.1.2 Vulnerabilities Characteristics\u003c\/p\u003e \u003cp\u003e5.2 Attacks\u003c\/p\u003e \u003cp\u003e5.2.1 Attacks Categories\u003c\/p\u003e \u003cp\u003e5.2.2 Reasons for Attack\u003c\/p\u003e \u003cp\u003e5.3 Energy Sector: Threats, Vulnerabilities, and Attacks Overview\u003c\/p\u003e \u003cp\u003e5.3.1 Threats\u003c\/p\u003e \u003cp\u003e5.3.2 Vulnerabilities\u003c\/p\u003e \u003cp\u003e5.3.3 Energy Sector Attacks\u003c\/p\u003e \u003cp\u003e5.3.4 Smart Grid Cybersecurity Challenges\u003c\/p\u003e \u003cp\u003e5.4 Security Controls\u003c\/p\u003e \u003cp\u003e5.4.1 Security Controls Categories\u003c\/p\u003e \u003cp\u003e5.4.2 Common Security Controls\u003c\/p\u003e \u003cp\u003e5.4.3 Applying Security Controls to Smart Grid\u003c\/p\u003e \u003cp\u003e5.5 Security Training and Skills\u003c\/p\u003e \u003cp\u003e5.5.1 Education, Training, and Awareness\u003c\/p\u003e \u003cp\u003e5.5.2 Security Awareness Program\u003c\/p\u003e \u003cp\u003e5.6 Planning for Security and Privacy\u003c\/p\u003e \u003cp\u003e5.6.1 Plan Structure\u003c\/p\u003e \u003cp\u003e5.6.2 Security Team\u003c\/p\u003e \u003cp\u003e5.7 Legal and Ethical Issues\u003c\/p\u003e \u003cp\u003e5.8 Standards, Guidelines, and Recommendations\u003c\/p\u003e \u003cp\u003eReferences-Part2\u003c\/p\u003e \u003cp\u003ePart III Security of Critical Infrastructure\u003c\/p\u003e \u003cp\u003e6 Critical Infrastructure\u003c\/p\u003e \u003cp\u003e6.1 Introduction\u003c\/p\u003e \u003cp\u003e6.1.1 Critical Infrastructure\u003c\/p\u003e \u003cp\u003e6.1.2 Critical Information Infrastructure\u003c\/p\u003e \u003cp\u003e6.2 Associated Industries with Critical Infrastructure\u003c\/p\u003e \u003cp\u003e6.2.1 US Critical Sectors\u003c\/p\u003e \u003cp\u003e6.2.2 Other Countries\u003c\/p\u003e \u003cp\u003e6.3 Critical Infrastructure Components\u003c\/p\u003e \u003cp\u003e6.4 Energy Sector\u003c\/p\u003e \u003cp\u003e6.4.1 Electrical Subsector\u003c\/p\u003e \u003cp\u003e6.4.2 Smart Grid Infrastructure\u003c\/p\u003e \u003cp\u003e6.5 Critical Infrastructures Interdependencies\u003c\/p\u003e \u003cp\u003e6.5.1 Interdependency Dimensions\u003c\/p\u003e \u003cp\u003e6.5.2 Dependencies\u003c\/p\u003e \u003cp\u003e6.6 Electrical Power System\u003c\/p\u003e \u003cp\u003e6.6.1 Electrical Power System Components\u003c\/p\u003e \u003cp\u003e6.6.2  Electrical Power System Evolution and Challenges\u003c\/p\u003e \u003cp\u003e6.6.3 Needs\u003c\/p\u003e \u003cp\u003e6.7 Recent Threats and Vulnerabilities\u003c\/p\u003e \u003cp\u003e6.7.1  Reported Cyber Attacks\u003c\/p\u003e \u003cp\u003e6.7.2 ICS\/SCADA Incidents and Challenges\u003c\/p\u003e \u003cp\u003e6.7.2.1 Stuxnet Exploitation\u003c\/p\u003e \u003cp\u003e6.7.2.2 Exposure to Post Stuxnet Malware in Rise\u003c\/p\u003e \u003cp\u003e6.7.2.3 Inappropriate Design and Lack of Management\u003c\/p\u003e \u003cp\u003e6.7.2.4 Safety\u003c\/p\u003e \u003cp\u003e6.7.3 Equipment Failure\u003c\/p\u003e \u003cp\u003e6.8 Standards, Guidelines, and Recommendations\u003c\/p\u003e \u003cp\u003e7 Critical Infrastructure Protection\u003c\/p\u003e \u003cp\u003e7.1 Critical Infrastructure Attacks and Challenges\u003c\/p\u003e \u003cp\u003e7.1.1 Power Grid\u003c\/p\u003e \u003cp\u003e7.1.2 Attacks on Information Technology and Telecommunications\u003c\/p\u003e \u003cp\u003e7.1.3 Attacks in Manufacturing\u003c\/p\u003e \u003cp\u003e7.1.4 Defense\u003c\/p\u003e \u003cp\u003e7.2 The Internet as a Critical Infrastructure\u003c\/p\u003e \u003cp\u003e7.3 Critical Infrastructure Protection\u003c\/p\u003e \u003cp\u003e7.3.1 Policies, Laws, and Regulations\u003c\/p\u003e \u003cp\u003e7.3.2 Protection Issues\u003c\/p\u003e \u003cp\u003e7.4 Information Security Frameworks\u003c\/p\u003e \u003cp\u003e7.4.1 NIST Cybersecurity Framework\u003c\/p\u003e \u003cp\u003e7.4.2 NIST Updated Cybersecurity Framework\u003c\/p\u003e \u003cp\u003e7.4.3 Generic Framework\u003c\/p\u003e \u003cp\u003e7.5 NIST Privacy Framework\u003c\/p\u003e \u003cp\u003e7.6 Addressing Security of Control Systems\u003c\/p\u003e \u003cp\u003e7.6.1 Challenges\u003c\/p\u003e \u003cp\u003e7.6.2 Terrorism Challenges\u003c\/p\u003e \u003cp\u003e7.7 Emerging Technologies and Impacts\u003c\/p\u003e \u003cp\u003e7.7.1 Control Systems Open to Internet\u003c\/p\u003e \u003cp\u003e7.7.2 Wireless and Mobile\u003c\/p\u003e \u003cp\u003e7.7.3 Internet of Things and Internet of Everything\u003c\/p\u003e \u003cp\u003e7.7.4 WEB Technologies\u003c\/p\u003e \u003cp\u003e7.7.5 Embedded Systems\u003c\/p\u003e \u003cp\u003e7.7.6 Cloud Computing\u003c\/p\u003e \u003cp\u003e7.8 Standards, Guidelines, and Recommendations\u003c\/p\u003e \u003cp\u003e7.8.1 Department of Homeland Security (DHS)\u003c\/p\u003e \u003cp\u003e7.8.2 Federal Communications Commission (FCC)\u003c\/p\u003e \u003cp\u003e7.8.3 National Institute of Standards and Technology (NIST)\u003c\/p\u003e \u003cp\u003e7.8.4 North American Energy Reliability Corporation (NERC)\u003c\/p\u003e \u003cp\u003e7.8.5 Federal Regulatory Energy Commission\u003c\/p\u003e \u003cp\u003e7.8.6 DOE Critical Infrastructure Guidance\u003c\/p\u003e \u003cp\u003e7.8.7 US-CERT\u003c\/p\u003e \u003cp\u003eReferences-Part3\u003c\/p\u003e \u003cp\u003ePart IV The Characteristics of Smart Grid and DER Systems\u003c\/p\u003e \u003cp\u003e8 Smart Power Grid\u003c\/p\u003e \u003cp\u003e8.1 Electric Power System\u003c\/p\u003e \u003cp\u003e8.1.1 Power System Services\u003c\/p\u003e \u003cp\u003e8.1.2 Power System Operations\u003c\/p\u003e \u003cp\u003e8.1.3 Energy Management System Overview\u003c\/p\u003e \u003cp\u003e8.1.4 Electrical Utilities Evolution\u003c\/p\u003e \u003cp\u003e8.2 Smart Grid – What it Is?\u003c\/p\u003e \u003cp\u003e8.2.1 Definitions\u003c\/p\u003e \u003cp\u003e8.2.2 Vision of the Future Smart Grid\u003c\/p\u003e \u003cp\u003e8.2.3 Tomorrow’s Utility\u003c\/p\u003e \u003cp\u003e8.2.4 EMS Upgrades\u003c\/p\u003e \u003cp\u003e8.2.5 Electricity Trade\u003c\/p\u003e \u003cp\u003e8.2.6 Trading Capabilities\u003c\/p\u003e \u003cp\u003e8.3 Smart Grid Characteristics\u003c\/p\u003e \u003cp\u003e8.3.1 Relevant Characteristics\u003c\/p\u003e \u003cp\u003e8.3.2 Electrical Infrastructure Evolution\u003c\/p\u003e \u003cp\u003e8.4 Smart Grid Conceptual Models\u003c\/p\u003e \u003cp\u003e8.4.1 NIST Conceptual Model\u003c\/p\u003e \u003cp\u003e8.4.2 IEEE Model\u003c\/p\u003e \u003cp\u003e8.4.3 European Conceptual Model\u003c\/p\u003e \u003cp\u003e8.5 Power and Smart Devices\u003c\/p\u003e \u003cp\u003e8.5.1 Smart Meters\u003c\/p\u003e \u003cp\u003e8.5.2 Intelligent Electronic Devices\u003c\/p\u003e \u003cp\u003e8.5.3 Phasor Measurement Units\u003c\/p\u003e \u003cp\u003e8.5.4 Intelligent Universal Transformers\u003c\/p\u003e \u003cp\u003e8.6 Examples of Key Technologies and Solutions\u003c\/p\u003e \u003cp\u003e8.6.1 Communications Networks\u003c\/p\u003e \u003cp\u003e8.6.2 Integrated Communications\u003c\/p\u003e \u003cp\u003e8.6.3 Sensor Networks\u003c\/p\u003e \u003cp\u003e8.6.4 Infrastructure for Transmission and Substations\u003c\/p\u003e \u003cp\u003e8.6.5 Wireless Technologies\u003c\/p\u003e \u003cp\u003e8.6.6 Advanced Metering Infrastructure\u003c\/p\u003e \u003cp\u003e8.7 Networking Challenges\u003c\/p\u003e \u003cp\u003e8.7.1 Architecture\u003c\/p\u003e \u003cp\u003e8.7.2 Protocols\u003c\/p\u003e \u003cp\u003e8.7.2 Constraints\u003c\/p\u003e \u003cp\u003e8.8 Standards, Guidelines, and Recommendations\u003c\/p\u003e \u003cp\u003e8.8.1 Smart Grid Interoperability\u003c\/p\u003e \u003cp\u003e8.8.2 Representative Standards\u003c\/p\u003e \u003cp\u003e9 Power Systems Characteristics\u003c\/p\u003e \u003cp\u003e9.1 Analysis of Power Systems\u003c\/p\u003e \u003cp\u003e9.1.1 Analysis of Basic Characteristics\u003c\/p\u003e \u003cp\u003e9.1.2 Stability\u003c\/p\u003e \u003cp\u003e9.1.3 Partial Stability\u003c\/p\u003e \u003cp\u003e9.2 Analysis of Impacts\u003c\/p\u003e \u003cp\u003e9.2.1  DERs Impacts\u003c\/p\u003e \u003cp\u003e9.2.2 Interconnectivity\u003c\/p\u003e \u003cp\u003e9.3 Reliability\u003c\/p\u003e \u003cp\u003e9.3.1 Reliable System Characteristics\u003c\/p\u003e \u003cp\u003e9.3.2 Addressing Reliability\u003c\/p\u003e \u003cp\u003e9.3.3 Evaluating Reliability\u003c\/p\u003e \u003cp\u003e9.3.4 ICT Reliability Issues\u003c\/p\u003e \u003cp\u003e9.3.5 DERs Impacts\u003c\/p\u003e \u003cp\u003e9.4 Resiliency\u003c\/p\u003e \u003cp\u003e9.4.1 Increasing Resiliency\u003c\/p\u003e \u003cp\u003e9.4.2 DERs Opportunities\u003c\/p\u003e \u003cp\u003e9.5 Addressing Various Issues\u003c\/p\u003e \u003cp\u003e9.5.1 Addressing Cybersecurity\u003c\/p\u003e \u003cp\u003e9.5.2 Cyber-Physical System\u003c\/p\u003e \u003cp\u003e9.5.3 Cyber-Physical Resilience\u003c\/p\u003e \u003cp\u003e9.5.4 Related Characteristics, Relationships, Differences and Similarities\u003c\/p\u003e \u003cp\u003e9.6  Power Systems Interoperability\u003c\/p\u003e \u003cp\u003e9.6.1  Interoperability Dimensions\u003c\/p\u003e \u003cp\u003e9.6.2 Smart Grid Interoperability\u003c\/p\u003e \u003cp\u003e9.6.3 Interoperability Framework\u003c\/p\u003e \u003cp\u003e9.6.6 Addressing Cross-Cutting Issues\u003c\/p\u003e \u003cp\u003e9.7 Smart Grid Interoperability Challenges\u003c\/p\u003e \u003cp\u003e9.8 Standards, Guidelines, and Recommendations\u003c\/p\u003e \u003cp\u003e9.8.1 ISO\/IEC Standards\u003c\/p\u003e \u003cp\u003e9.8.2 IEEE Standards\u003c\/p\u003e \u003cp\u003e10 Distributed Energy Systems\u003c\/p\u003e \u003cp\u003e10.1 Introduction\u003c\/p\u003e \u003cp\u003e10.1.1 Distributed Energy\u003c\/p\u003e \u003cp\u003e10.2 Distributed Energy Resources\u003c\/p\u003e \u003cp\u003e10.2.1 Energy Storage Technologies\u003c\/p\u003e \u003cp\u003e10.2.2 Electric Vehicles\u003c\/p\u003e \u003cp\u003e10.2.3 Distributed Energy Resource Systems\u003c\/p\u003e \u003cp\u003e10.2.4 Electrical Energy Storage Systems\u003c\/p\u003e \u003cp\u003e10.2.5 Virtual Power Plant\u003c\/p\u003e \u003cp\u003e10.3 DER Applications and Security\u003c\/p\u003e \u003cp\u003e10.3.1 Energy Storage Applications\u003c\/p\u003e \u003cp\u003e10.3.2  Microgrid\u003c\/p\u003e \u003cp\u003e10.4 Smart Grid Security Goals\u003c\/p\u003e \u003cp\u003e10.4.1 Cybersecurity\u003c\/p\u003e \u003cp\u003e10.4.2 Reliability and Security\u003c\/p\u003e \u003cp\u003e10.4.3 DER Security Challenges\u003c\/p\u003e \u003cp\u003e10.5  Security Governance in Energy Industry\u003c\/p\u003e \u003cp\u003e10.5.1 Security Governance Overview\u003c\/p\u003e \u003cp\u003e10.5.2 Information Governance\u003c\/p\u003e \u003cp\u003e10.5.3 EAC Recommendations\u003c\/p\u003e \u003cp\u003e10.5.4 Establishing Information Security Governance\u003c\/p\u003e \u003cp\u003e10.5.5 Governance for Building Security In\u003c\/p\u003e \u003cp\u003e10.6  What Kind of Threats and Vulnerabilities?\u003c\/p\u003e \u003cp\u003e10.6.1 Threats\u003c\/p\u003e \u003cp\u003e10.6.2 Reported Cyber Incidents\u003c\/p\u003e \u003cp\u003e10.6.3 Vulnerabilities\u003c\/p\u003e \u003cp\u003e10.6.4 ICS Reported Vulnerabilities\u003c\/p\u003e \u003cp\u003e10.6.5  Addressing Privacy Issues\u003c\/p\u003e \u003cp\u003e10.7 Examples of Smart Grid Applications\u003c\/p\u003e \u003cp\u003e10.7.1 Smart Grid Expectations\u003c\/p\u003e \u003cp\u003e10.7.2 Demand Response Management Systems (DRMS)\u003c\/p\u003e \u003cp\u003e10.7.3 Distribution Automation\u003c\/p\u003e \u003cp\u003e10.7.4 Advanced Distribution Management System\u003c\/p\u003e \u003cp\u003e10.7.5 Smart Home\u003c\/p\u003e \u003cp\u003e10.7.6 Smart Microgrid\u003c\/p\u003e \u003cp\u003e10.8 Standards, Guidelines, and Recommendations\u003c\/p\u003e \u003cp\u003e10.8.1 NIST Roadmap, Standards, and Guidelines\u003c\/p\u003e \u003cp\u003e10.8.2 NERC CIP Standards\u003c\/p\u003e \u003cp\u003e10.8.3 Security Standards Governance\u003c\/p\u003e \u003cp\u003eReferences-Part4\u003c\/p\u003e \u003cp\u003ePart V Security Program Management\u003c\/p\u003e \u003cp\u003e11 Security Management\u003c\/p\u003e \u003cp\u003e11.1 Security Management Overview\u003c\/p\u003e \u003cp\u003e11.1.1 Information Security\u003c\/p\u003e \u003cp\u003e11.1.2 Security Management Components\u003c\/p\u003e \u003cp\u003e11.1.3 Management Tasks\u003c\/p\u003e \u003cp\u003e11.2 Security Program\u003c\/p\u003e \u003cp\u003e11.2.1 Security Program Functions\u003c\/p\u003e \u003cp\u003e11.2.2 Building a Security Program: Which Approach?\u003c\/p\u003e \u003cp\u003e11.2.3  Security Management Process\u003c\/p\u003e \u003cp\u003e11.3 Asset Management\u003c\/p\u003e \u003cp\u003e11.3.1 Asset Management for Power System\u003c\/p\u003e \u003cp\u003e11.3.2 Asset Management Perspectives\u003c\/p\u003e \u003cp\u003e11.3.3 Benefits of Asset Management\u003c\/p\u003e \u003cp\u003e11.3.3.1 DER Assets Classification\u003c\/p\u003e \u003cp\u003e11.3.3.2 DER Asset Data\u003c\/p\u003e \u003cp\u003e11.3.3.3 Asset Management Analytics\u003c\/p\u003e \u003cp\u003e11.3.3.4 Applications\u003c\/p\u003e \u003cp\u003e11.3.3.5 Asset Management Metrics\u003c\/p\u003e \u003cp\u003e11.3.3.6 Asset Management Services\u003c\/p\u003e \u003cp\u003e11.4 Physical Security and Safety\u003c\/p\u003e \u003cp\u003e11.4.1 Physical Security Measures\u003c\/p\u003e \u003cp\u003e11.4.2 Physical Security Evolution\u003c\/p\u003e \u003cp\u003e11.4.3 Human Resources and Public Safety\u003c\/p\u003e \u003cp\u003e11.5 Human and Technology Relationship\u003c\/p\u003e \u003cp\u003e11.5.1 Use Impacts\u003c\/p\u003e \u003cp\u003e11.5.2 DER Systems Challenges\u003c\/p\u003e \u003cp\u003e11.5.3  Security vs. Safety\u003c\/p\u003e \u003cp\u003e11.6 Information Security Management\u003c\/p\u003e \u003cp\u003e11.6.1 Information Security Management Infrastructure\u003c\/p\u003e \u003cp\u003e11.6.2 Enterprise Security Model\u003c\/p\u003e \u003cp\u003e11.6.3 Cycle of the Continuous Information Security Process\u003c\/p\u003e \u003cp\u003e11.6.4 Information Security Process for Smart Grid\u003c\/p\u003e \u003cp\u003e11.6.5  Systems Engineering and Processes\u003c\/p\u003e \u003cp\u003e11.7 Models and Frameworks for Information Security Management\u003c\/p\u003e \u003cp\u003e11.7.1  ISMS Models\u003c\/p\u003e \u003cp\u003e11.7.2 Information Security Management Maturity Model (ISM3) Model\u003c\/p\u003e \u003cp\u003e11.7.3 BMIS Model\u003c\/p\u003e \u003cp\u003e11.7.4 Systems Security Engineering - Capability Maturity Model (SSE-CMM)\u003c\/p\u003e \u003cp\u003e11.7.5 Standard of Good Practice (SoGP)\u003c\/p\u003e \u003cp\u003e11.7.6 Examples of Other Frameworks\u003c\/p\u003e \u003cp\u003e11.7.7 Combining Models, Frameworks, Standards, and Best Practices\u003c\/p\u003e \u003cp\u003e11.8 Standards, Guidelines, and Recommendations\u003c\/p\u003e \u003cp\u003e12 Security Management for Smart Grid Systems\u003c\/p\u003e \u003cp\u003e12.1 Strategic, Tactical, and Operational Security Management\u003c\/p\u003e \u003cp\u003e12.1.1 Unified View of Smart Grid Systems\u003c\/p\u003e \u003cp\u003e12.1.2 Organizational Security Model\u003c\/p\u003e \u003cp\u003e12.2 Security as Business Issue\u003c\/p\u003e \u003cp\u003e12.2.1 Strategic Management\u003c\/p\u003e \u003cp\u003e12.2.2 Tactical Management\u003c\/p\u003e \u003cp\u003e12.2.3 Operational Management\u003c\/p\u003e \u003cp\u003e12.3 Systemic Security Management\u003c\/p\u003e \u003cp\u003e12.3.1 Comparison and Discussion of Models\u003c\/p\u003e \u003cp\u003e12.3.2 Efficient and Effective Management Solutions\u003c\/p\u003e \u003cp\u003e12.3.3 Means for Improvement\u003c\/p\u003e \u003cp\u003e12.4 Security Model for Electrical Sector\u003c\/p\u003e \u003cp\u003e12.4.1 Electricity Subsector Cybersecurity Capability Maturity Model (ES-C2M2)\u003c\/p\u003e \u003cp\u003e12.4.2 Which Guidance and Recommendations Apply to Electrical Sector?\u003c\/p\u003e \u003cp\u003e12.4.3 Implementing ISMS\u003c\/p\u003e \u003cp\u003e12.4.4 NIST Framework\u003c\/p\u003e \u003cp\u003e12.4.5 Blueprints\u003c\/p\u003e \u003cp\u003e12.4.6 Control Systems\u003c\/p\u003e \u003cp\u003e12.5 Achieving Security Governance\u003c\/p\u003e \u003cp\u003e12.5.1  Security Strategy Principles\u003c\/p\u003e \u003cp\u003e12.5.2  Governance Definitions and Developments\u003c\/p\u003e \u003cp\u003e12.5.3 Information Security Governance\u003c\/p\u003e \u003cp\u003e12.5.4 Implementation Challenges\u003c\/p\u003e \u003cp\u003e12.5.5 Responsibilities and Roles\u003c\/p\u003e \u003cp\u003e12.5.6  Governance Model\u003c\/p\u003e \u003cp\u003e12.6 Ensuring Information Assurance\u003c\/p\u003e \u003cp\u003e12.6.1 NIST SP800-55\u003c\/p\u003e \u003cp\u003e12.6.2 ISO\/IEC 27004\u003c\/p\u003e \u003cp\u003e12.7 Certification and Accreditation\u003c\/p\u003e \u003cp\u003e12.7.1 Common Criteria\u003c\/p\u003e \u003cp\u003e12.7.2 ISO\/IEC 27001\u003c\/p\u003e \u003cp\u003e12.7.3 ISMS Accreditation\u003c\/p\u003e \u003cp\u003e12.8 Standards, Guidelines, and Recommendations\u003c\/p\u003e \u003cp\u003e12.8.1 ISO\/IEC Standards\u003c\/p\u003e \u003cp\u003e12.8.2 ISA Standards\u003c\/p\u003e \u003cp\u003e12.8.3 National Institute of Standards and Technology (NIST)\u003c\/p\u003e \u003cp\u003e12.8.4 Internet Engineering Task Force (IETF)\u003c\/p\u003e \u003cp\u003e12.8.5 ISF Standards\u003c\/p\u003e \u003cp\u003e12.8.6 European Union Agency for Network and Information Security Guidelines\u003c\/p\u003e \u003cp\u003e12.8.7 Information Assurance for Small Medium Enterprise (IASME)\u003c\/p\u003e \u003cp\u003eReferences-Part5\u003c\/p\u003e \u003cp\u003eAppendix A Cybersecurity\u003c\/p\u003e \u003cp\u003eAppendix B Power\u003c\/p\u003e \u003cp\u003eAppendix C Critical Infrastructures and Energy Infrastructure\u003c\/p\u003e \u003cp\u003eAppendix D Smart Grid – Policy, Concepts, and Technologies\u003c\/p\u003e \u003cp\u003eAppendix J Acronyms\u003c\/p\u003e \u003cp\u003eIndex\u003c\/p\u003e","brand":"John Wiley \u0026 Sons Inc","offers":[{"title":"Default Title","offer_id":49528842322263,"sku":"9781118949047","price":105.26,"currency_code":"GBP","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0817\/1739\/5799\/files\/9781118949047.jpg?v=1731873237","url":"https:\/\/bookcurl.com\/products\/building-an-effective-security-program-for-distributed-energy-resources-and-systems-9781118949047","provider":"Book Curl","version":"1.0","type":"link"}