This report was authored by Marissa P. Gillett from the State of Connecticut Public Utilities Regulatory Authority and published on January 7, 2022. The report deals with the growth of cybersecurity threats facing Connecticut’s public utilities and the development of cybersecurity programs to mitigate such threats. Following the framework established by the Cybersecurity Action Plan, the key elements considered for the development of cybersecurity programs were corporate culture, threats, and the cybersecurity capability maturity model (C2M2). The main takeaway is that the success of a cybersecurity program relies on the commitment of all employees in an organization, as demonstrated by utility decision makers and support staff in Connecticut’s utilities.
Keywords: Communications, Cybersecurity/Privacy, Natural Gas, Protocols/Standards, Training