In 2017, the OEB, in conjunction with the IESO and other industry partners, developed a framework for the transmission and distribution sector, based largely on those developed by the U.S. National Institute of Standards and Technology (NIST) and Privacy by Design. Since its implementation, local distribution companies have been required to evaluate their risk, establish cybersecurity objectives, and identify their capabilities relative to those risks on an annual basis. In recognition of our unique position at the centre of the sector, in 2018 the OEB amended the IESO’s licence to include responsibility for cybersecurity of the bulk power system – a move that enables the IESO to lead collaborative efforts to promote electricity sector cybersecurity readiness.
As Canada’s authority on cybersecurity, the Cyber Centre works side by side with partners, like the IESO, to identify, address and share knowledge about systemic threats, risks and vulnerabilities. Established in 2018, the IESO’s partnership with the Cyber Centre enabled the launch of Lighthouse, which relies on the Centre’s expertise to provide actionable threat-intelligence information in near real-time.
The E-ISAC, a division of the North American Electric Reliability Corporation, gathers and analyzes security data, shares appropriate data with stakeholders, and communicates mitigation strategies with its stakeholders. The E-ISAC helps to reduce cyber and physical security risk to the electricity industry across North America by providing unique insights and collaboration.