Description:

Remote Access is a serious issue for North American Electric Utilities.  Companies allow remote access to employees and vendors.  Each of these connections is a cyber-risk because if the individual computer accessing a Utility is infected then the utility is exposed, or if a valid or vendor has had their credentials compromised then the attacker has a clear and unopposed opening, or if the employee or vendors wishes to cause harm.  Remote access requires a connection that originates outside a company protected network generally required for a cyber-attack conducted remotely.

‘Privileged’ access means the user, wherever they access your network, usually has administrative permission to view or alter important files or systems in your network.

Educational Institution Connections:

Protect Our Power has partnered with George Mason University to develop vendor comparisons and guidance for this Topic. Contact Erick Ford at EFord@ProtectOurPower.org for more information.