FY24−25 Priority Goal
Energy Sector Cybersecurity
Goal leaders
Daniel Lagraffe
Deputy Director
Risk Management - Cybersecurity, Energy Security, and Emergency Response (DOE)
Dr. Stephanie Johnson
Program Manager for Cybersecurity Cybersecurity, Energy Security, and Emergency Response
(DOE)
To achieve
Increase the cyber resilience of the grid by addressing critical vulnerabilities prior to adversary exploitation through a multi-faceted approach that includes applying classified threat intelligence, illuminating systemic cyber supply chain risks, cyber vulnerability testing and forensic analyses, and engineering out cyber risks – all in close partnership with asset owners and manufacturers across the Energy Sector.
- By September 30, 2024, increase by one (~20%) the 2023 baseline number of sources (six) contributing bills of materials (BOMs) to the Energy Cyber Sense data repository (contingent upon operationalizing one new readable BOM format) and conduct 10 stakeholder energy supply chain cybersecurity outreach and education activities, including (but not limited to), conference presentations, technical whitepapers and analytical reports– culminating in a strategic plan for maturing BOMs in the energy sector.
- By September 30, 2025, increase by two (~30%) the 2023 baseline number of sources (six) contributing bills of materials (BOMs) to the Energy Cyber Sense data repository (contingent upon operationalizing two new readable BOM formats) and conduct 25 stakeholder energy supply chain cybersecurity outreach and education activities, including (but not limited to), conference presentations, and technical whitepapers and analytical reports– culminating in an implementation plan for maturing BOMs in the energy sector.
Progress Updates
