Helping you make sense of the energy and water sectors


CEER responds to EU cyber-security initiatives

Nick Palmer Writer

Cyber-security in the European energy sector is becoming increasingly important as new technology is implemented. Where this technology increases efficiency and capability, it also opens systems up to further risk. Both legislators and regulators have put forward recommendations on how to improve Europe’s energy cyber-security. EU cyber-security directives In August 2016, the EU Directive on Security of Network and Information Systems (NISD) was implemented, giving EU Member States 21 months to enact the directive. An objective of NISD is to identify Operators of Essential Services (OES) – this includes energy sector infrastructure. In recent years, various cyber attacks worldwide have highlighted the need for strong security. On 19 November 2018, the UK Parliament’s Joint Committee on the National Security Strategy, in a report, identified the disruptions to the energy grid which occurred in Ukraine in 2015 and 2016 as an example of a possible threat UK energy infrastructure. On 13 September 2017, the European Commission (EC) adopted a cyber-security package with new initiatives to further improve EU cyber resilience, deterrence and defence: a reinforced role for European Union Agency for Network Information Security (ENISA), with a permanent and wider mandate a European Cyber-security Evaluation framework and its schemes, which will be acceptable at EU level, and the European Cyber-security Evaluation framework and its schemes will entirely replace existing national schemes. The EC reasoned that ENISA currently does not have a strong mandate or the resources to make an impact. The proposed act is currently being debated in the European Parliament. Security recommendations and roles ...

This is a subscription product

If you are a subscriber please log in.

For more information or to subscribe
please contact us

Who we work for