OT Cyber Security for Offshore Wind

This collaborative initiative addresses the urgent need for clear, comprehensive guidelines tailored to the evolving cyber threats and vulnerabilities in the offshore wind sector.

SHARE:

Offshore wind power is emerging as a critical and dependable resource in the rapid shift toward renewable energy. Like other major energy sources, offshore wind is now a target of frequent and sophisticated cyberattacks. Offshore wind developers and operators have pioneered their own cyber security approaches, unintentionally producing a fragmented cyber security environment with many perceived and real vulnerabilities for investors and stakeholders. The OT Cyber Security for Offshore Wind joint industry project (JIP) aims to establish a unified, actionable model to enhance the integrity, resilience, and operational efficiency of wind energy amidst evolving cyber threats.

The challenge with current Cyber Security

Networked digital devices are already critical for the operation of offshore wind. Emerging automation, hybridization, and ancillary service offerings will increase this dependency, even as they reinforce grid stability and offshore wind’s economic attractiveness. Protecting the function of these digital systems will be crucial to offshore wind’s continued growth.

While cyber security standards like IEC 62443 outline the attributes of robust cyber security for industrial facilities, there is currently no specific guidance for the steps necessary to build and operate systems compliant with these standards. Existing standards focus on complete systems, whereas this JIP will delineate the processes required for their development and operation.

Objectives and scope of the OT Cyber Security for Offshore Wind

The primary objective of the OT Cyber Security for Offshore Wind JIP is to strengthen the industry's cyber security for the future. This collaborative initiative will bring together stakeholders from the wind energy sector to develop recommended practices that address broad industry needs. By leveraging the expertise and influence of its participants, the JIP aims to foster widespread adoption of these guidelines.

Why is the focus on Cyber Security for Offshore Wind important?

To support the anticipated rapid growth in the wind power sector, there is an increasing reliance on digital connectivity for critical infrastructure. Additionally, cyberattacks against the energy sector have surged over the past decade. As wind energy’s share of electricity markets expands, wind becomes a more appealing target for attacks and a vital component of local grid stability, necessitating the identification and mitigation of associated vulnerabilities. This combination of rapid growth and a heightened threat landscape has led to increased regulatory scrutiny and investor uncertainty. Clear, industry-specific guidance will help the offshore wind industry better identify and manage cyber risk.

Collaborative efforts and expertise

Led by DNV in collaboration with Siemens Energy, the OT Cyber Security for Offshore Wind JIP harnesses over 40 years of expertise in wind energy and industrial cyber security. DNV publishes a wide array of standards and recommended practices aimed at enhancing safety, security, and efficiency across the energy sector. Siemens Energy, a global leader in energy technology and industrial cyber security solutions, contributes significantly to wind power through its subsidiary, Siemens Gamesa. This initiative addresses the urgent need for clear, comprehensive guidelines tailored to the evolving cyber threats and vulnerabilities in the offshore wind sector.

Invitation to join OT Cyber Security for Offshore Wind JIP

The JIP will unite wind turbine manufacturers, original equipment manufacturers, wind operators, developers, integrated energy companies, and digital infrastructure providers to develop guidelines that address industry-wide needs. By leveraging the expertise and influence of its participants, the project aims to promote widespread adoption and strengthen the industry’s cyber security for the future. You can access more details by reading our Mission Statement.

For further involvement

Phase one of the project is scheduled to run for one year, starting in February 2025, with multiple workshops and feedback sessions planned to maximize participant engagement. Stakeholders interested in the OT Cyber Security for Offshore Wind JIP are encouraged to reach out before the participant deadline in January 2025.

This initiative aims to tackle immediate technical challenges while contributing to the long-term sustainability and efficiency of cyber security in offshore wind energy. These efforts will contribute to protecting offshore wind assets, unlocking further growth for offshore wind, and accelerating a more renewable energy-driven world.