GE Provides Critical Cyber Security Protection

Customer

A major North American power generator 

Challenge

A major U.S. generator of electricity from natural gas and geothermal resources needed help to achieve compliance with NERC Critical Infrastructure Protection (CIP) plan standards for its existing operational equipment. The project required expertise and execution within a very short timeline due to an upcoming scheduled outage.

GE as Part of the Solution

The customer came to GE for guidance on meeting NERC CIP compliance requirements. GE implemented its proven defense-in-depth industrial control system (ICS) cyber security solutions. GE’s centralized management system, SecurityST, is IEC 62443-2-4 certified, indicating the solution uses best practices for integration and maintenance. GE’s OpShield solution and Cyber Asset Protection (CAP) subscription, supported by FoxGuard Solutions, further strengthened the security posture with real-time topography identification, patch management, and hardening of HMIs as a best practice to maintain system functionality.

Despite the challenges of a short delivery cycle, GE was able to ship the equipment two weeks prior to the customer’s requested date. The installation and commissioning was performed on time, with no interruption to operations. The GE team was recognized by the customer for providing a holistic solution and above and beyond support.

Technology Highlights

  • SecurityST Mark VIe Solution contributes to 8 of 11 NERC CIP requirements, immediately reducing the attack surface
  • Upgrading HMIs to current Windows operating system improves security posture through availability of updates
  • CAP Program provides validated updates and patches, ensuring assets operate at peak performance
  • OpShield identified 15-20 unidentified network IP addresses within the first 2-3 hours of operation


Contact Us

Contact us to learn more about how we are transforming the future of industry with our digital products, software and service solutions.