The Federal Energy Management Program (FEMP) is working with agencies to develop and validate a systematic and integrated approach to energy and cyber security. This approach includes Identifying critical mission drivers, assessing needs, prioritizing projects, researching financing options, and considering measurement and verification factors.
Facility Cyber Risks and Challenges
- The ability to identify critical loads and manage them through dynamic energy management is key to achieving resilient operations. Automated facility-related control systems (FRCS) are often part of dynamic energy management at the building and installation level. These control systems also present security concerns in the current connected, wireless, "Internet of Things" operating environment.
- Over the last 30 years, FRCS have transitioned from mechanical to digital to Internet Protocol.
- Controls and control protocols are largely insecure and have relied on "security through obscurity."
How FEMP Supports Energy and Cyber Security Integration
FEMP supports energy and cyber security integration by working with agencies to:
- Define the characteristics of a secure system
- Validate and tailor automated tools for easy use by facilities staff as assessment and planning tools
- Develop a standards-based approach to cyber security.