From: Tom Conway Sent: Friday, May 28, 2021 3:43 PM To: ElectricSystemEO Subject: [EXTERNAL] RFI on Ensuring the Continued Security of the United States' Critical Electric Infrastructure Mr. Cote: BlueVoyant is pleased to present the enclosed response to your RFI released in April. Our response is centered around how our 3rd Party Cyber Risk Service (3PR) can help the Department of Energy better understand, prioritize and reduce cyber risk within the energy critical infrastructure sector, specifically requested in RFI areas 1, 2 and 3. In light of the recent Colonial Pipeline situation and on-going threats to the Electrical Grid, this is capability is needed more than ever both to industry and the Federal Government, Governments and large corporations around the world are already using BlueVoyat to manage cyber risk that results from them interacting with their ever growing number and variety of third parties (contractors, subcontractors, service providers, utilities, alliance partners, etc). Our solution combines unique data sources, advanced analytics, cyber expertise provided by our staff with many years of experience at NSA, FBI GCHQ and other Government organizations, and proactive mitigation management capabilities. Please note that this capability was discussed with DoE CESER personnel in mid-to-late calendar year 2020, unfortunately some of those personnel have moved on. We would welcome the opportunity to re-start these discussions. Thank you for allowing us this opportunity to provide our perspectives. We look forward to speaking with you soon. If you have questions regarding this submission, please contact me. V/R, Tom Conway Director, Federal Business Development BlueVoyant Phone: (703) 801-0752 Email: tom.conway@bluevoyant.com