Substation Physical Security

May 10, 2023 | NERC, News, Publications

Darrel A. Grumman, Manager of NERC Compliance Programs at EPE, shared this update on the implementation of physical security measures for electric utility assets:

As a Compliance Professional who interacts with both cyber and physical security requirements across the energy sector, I understand the importance of protecting electric utility assets from physical attacks. These attacks can have severe consequences, from service disruptions to property damage and even loss of life. Therefore, it is crucial for electric utilities to implement effective physical security measures to mitigate the risk of such attacks. In this article, I will cover some best practices and specific steps that electric utilities can take to protect their assets from physical attacks.

  • Conduct a Risk Assessment: Before implementing physical security measures, it is essential to conduct a risk assessment to identify potential vulnerabilities and determine the appropriate security measures needed to mitigate them. This includes assessing the potential threat level of the site, analyzing the site’s physical layout and design environmentally, and identifying critical assets and infrastructure within the perimeter that require protection.
  • Develop a Security Plan: Based on the results of the risk assessment, develop a comprehensive security plan that outlines specific security measures to be implemented. This should include details such as access control measures, perimeter security, security lighting, intrusion detection systems, and security staffing requirements.
  • Implement Access Control Measures: Access control measures will be an essential component of physical security for any Bulk Electric System facility. This includes measures such as fencing, gates, turnstiles, and security checkpoints to restrict access to critical infrastructure and assets.
  • Implement Perimeter Security Devices: Perimeter security measures, such as CCTV cameras and motion detectors, can help to detect and deter potential intruders. This should include monitoring systems with high-quality cameras that provide clear images and can be monitored remotely.
  • Install Security Lighting: Adequate lighting is a crucial element of physical security, as it helps to deter potential intruders and provides clear visibility for security personnel. Install lighting systems that cover all areas of the site, including entry points, critical infrastructure, and high-risk areas.
  • Install Intrusion Detection Systems: Intrusion detection systems, such as alarm systems and sensors, can help to detect and alert security personnel to potential security breaches. This should include systems that trigger alarms and alert security personnel when unauthorized access is detected.
  • Consider Implementing Security Staffing: Adequate security staffing is essential to ensure the effectiveness of physical security measures. This includes having trained security personnel on-site at all times, as well as establishing clear procedures for emergency response and incident management.

Above are a handful of considerations to take when thinking about how to protect your Bulk Electric System facilities and critical elements. Every site will be unique in its own way based on the environmental, assets, criticality, and geographical attributes, but this does not mean that a special process must be designed for these projects. Below is a quick look at what a sample implementation of these physical security activities and implementation can look like:

Mock Timeline of Project Management Activities:

  • Week 1-2: Conduct a risk assessment to identify potential vulnerabilities and determine the appropriate security measures needed.
  • Week 3-4: Develop a comprehensive security plan based on the results of the risk assessment.
  • Week 5-6: Implement access control measures, including fencing, gates, turnstiles, and security checkpoints.
  • Week 7-8: Install perimeter security measures, including CCTV cameras and motion detectors.
  • Week 9-10: Install security lighting systems that cover all areas of the site.
  • Week 11-12: Install intrusion detection systems, such as alarm systems and sensors.
  • Week 13-14: Establish adequate security staffing, including trained security personnel on-site at all times.

Protecting electric utility assets (and frankly any other critical infrastructure facility) from physical attacks requires a comprehensive approach that includes conducting a risk assessment, developing a security plan, implementing access control measures, installing perimeter security, security lighting, intrusion detection systems, and security staffing. By taking these steps and building a lasting set of policies and procedures that support the ongoing care and maintenance of the program, electric utilities can significantly reduce the risk of physical attacks and ensure the safety and security of critical infrastructure and assets. With a well-planned timeline and proper project management, these steps can be implemented effectively and efficiently.

To stay ahead of the curve in the electric industry and ensure compliance with evolving regulatory standards, reach out to us for a consultation. Our team at EPE is ready to discuss the challenges associated with planned changes and showcase how we are at the forefront of grid modernization and compliance. Schedule a consult today to learn how we can assist your organization.