power gen – Waterfall Security Solutions https://waterfall-security.com Unbreachable OT security, unlimited OT connectivity Tue, 25 Nov 2025 08:44:46 +0000 en-US hourly 1 https://wordpress.org/?v=6.9.4 https://waterfall-security.com/wp-content/uploads/2023/09/cropped-favicon2-2-32x32.png power gen – Waterfall Security Solutions https://waterfall-security.com 32 32 Webinar: Industry-Specific 62443 Insights for Power Generation https://waterfall-security.com/ot-insights-center/power/webinar-industry-specific-62443-insights-for-power-generation/ Thu, 29 Aug 2024 08:04:22 +0000 https://waterfall-security.com/?p=26656 An in-depth webinar that goes beyond the buzzwords and provides practical, industry-specific guidance on applying the ISA/IEC 62443 standards to safeguard critical power infrastructure

The post Webinar: Industry-Specific 62443 Insights for Power Generation appeared first on Waterfall Security Solutions.

]]>
OT Insights CenterPowerWebinar: Industry-Specific 62443 Insights for Power Generation

Webinar: Industry-Specific 62443 Insights for Power Generation

Watch the webinar for an in-depth session that goes beyond the buzzwords and provides practical, industry-specific guidance on applying the ISA/IEC 62443 standards to safeguard critical power infrastructure

The ISA/IEC 62443 standards provide a robust framework for enhancing cybersecurity across various industries, yet interpreting the standards in power generation presents unique challenges and opportunities.

Whether you’re a cybersecurity professional, OT engineer, or industry leader, watch the webinar recording for an in-depth webinar that goes beyond the buzzwords and provides practical, industry-specific guidance on applying the ISA/IEC 62443 standards to safeguard critical power infrastructure.

In this webinar, Dr. Jesus Molina takes us through:

arrow red right Decoding the complexities of 62443: Gain a clear understanding of the standards, their structure, and how they apply to power generation

arrow red right Navigating the implementation challenges: Learn how to address the unique needs of safety-critical and equipment protection sub-networks.

arrow red right Adopting a consequence-driven approach: Discover how to conduct effective risk assessments that account for high-impact, low-probability scenarios.

arrow red right Architect secure networks: Implement zoning and interconnected structures that enhance OT resilience.

arrow red right Strengthen defenses beyond SL4: Explore engineering-grade controls to complement cybersecurity measures and reduce reliance on expensive SL4 classifications.

About the Speaker

Picture of Dr. Jesus Molina

Dr. Jesus Molina

Jesus Molina is Waterfall’s Director of Industrial Security. He is a security expert in both OT and IT security. A former hacker, his research on offensive security in industrial systems has been echoed by many publications and media, including Wired and NPR. Mr. Molina has acted as chair of several security organizations, including the Trusted Computing Group and the IoT Internet Consortium. He is the co-writer of the Industrial Internet Security Framework and the author of several security-related patents and academic research papers. Mr. Molina holds a M.S. and a Ph.D from the University of Maryland.

Share

Trending posts

Stay up to date

Subscribe to our blog and receive insights straight to your inbox

Tags

The post Webinar: Industry-Specific 62443 Insights for Power Generation appeared first on Waterfall Security Solutions.

]]> Engineering-Grade IEC 62443 – A Guide For Power Generation https://waterfall-security.com/ot-insights-center/power/engineering-grade-iec-62443-a-guide-for-power-generation/ Tue, 05 Mar 2024 08:01:11 +0000 https://waterfall-security.com/?p=19161 Join our upcoming webinar and learn about the IEC 62243 standard for powergen, how CIE can help with IEC 62443-3-2 risk assessments, and what kind of extra protection do 62443-4-2 certified components provide.

The post Engineering-Grade IEC 62443 – A Guide For Power Generation appeared first on Waterfall Security Solutions.

]]>
OT Insights CenterPowerEngineering-Grade IEC 62443 – A Guide For Power Generation

Engineering-Grade IEC 62443 – A Guide For Power Generation

Join our webinar for an in-depth look the IEC 62443 standard, IEC 62443-3-2 risk assessments, and why would we need 62443-4-2 certified components for power generation operations.

We will host 2 live streams of the webinar:
March 27 – 11:00 AM New York
March 28 – 9:00 AM Singapore

Engineering-Grade IEC 62443 - A guide for power generation Webinar

IEC 62443 is used widely in power generation, but some aspects of the standard are ambiguous, and others are easily confused. The Cyber-Informed Engineering (CIE) initiative, funded by the US Department of Energy, is a new way to look at IEC 62443 – a perspective that clears up a lot of confusion. Join Andrew Ginter and Jesus Molina in this webinar for a preview of a new Waterfall guide to IEC 62443 for power generation, seen through the lens of CIE

All participants will receive a copy of the new guide when it is released, shortly after the webinar.

In this webinar, you will learn:

arrow red right What are the IEC 62443 standards and which ones apply to power generation?

arrow red right How can CIE help IEC 62443-3-2 risk assessments determine Security Level targets?

arrow red right How can engineering-grade mitigations eliminate cyber threats, in addition to IEC 62443-3-3 mitigations?

arrow red right What kind of extra protection do we get from 62443-4-2 certified components?

 

About the Speaker

Picture of Andrew Ginter, Waterfall VP Industrial Security

Andrew Ginter, Waterfall VP Industrial Security

Andrew Ginter is the most widely-read author in the industrial security space, with over 20,000 copies of his first two books in print. He is a trusted advisor to the world's most secure industrial enterprises, and contributes regularly to industrial cybersecurity standards and guidance.

Picture of Dr. Jesus Molina, Director of Industrial Security

Dr. Jesus Molina, Director of Industrial Security

Jesus Molina is Waterfall’s Director of Industrial Security. He is a security expert in both OT and IT security. A former hacker, his research on offensive security in industrial systems has been echoed by many publications and media, including Wired and NPR.
Mr. Molina has acted as chair of several security organizations, including the Trusted Computing Group and the IoT Internet Consortium. He is the co-writer of the Industrial Internet Security Framework and the author of several security-related patents and academic research papers.

Share

Register Now

The post Engineering-Grade IEC 62443 – A Guide For Power Generation appeared first on Waterfall Security Solutions.

]]> Securing Power Generation At New Brunswick Power https://waterfall-security.com/ot-insights-center/power/securing-power-generation-at-new-brunswick-power/ Sun, 08 Nov 2020 07:45:00 +0000 https://waterfall-security.com/?p=10072 Securing the continuous operation of power production networks in all power plants, while enabling real-time OT monitoring and compliance with NERC-CIP regulatory requirements.

The post Securing Power Generation At New Brunswick Power appeared first on Waterfall Security Solutions.

]]>
OT Insights CenterPowerSecuring Power Generation At New Brunswick Power

Securing Power Generation At New Brunswick Power

Partnering With Énergie NB Power To Secure Production And Assure Compliance
Securing Power Generation At New Brunswick Power
Customer/ Partner:

Énergie NB Power.

Customer Requirement:

Secure, safe and continuous operation of power production networks in all power plants, while enabling real-time OT monitoring and compliance with NERC-CIP regulatory security requirements.

Waterfall’s Unidirectional Solution:

Waterfall Unidirectional Gateways were deployed to separate the OT and enterprise networks. All business and operational applications – especially ICCP / PI servers – continue to operate reliably to ensure smooth operation and maintenance of power stations.

Protecting Reliability And Ensuring Compliance At Power Generation Sites

Énergie NB Power supplies wholesale energy products in a competitive environment. Electricity is generated at 14 hydro, coal, oil, and diesel-powered stations, with an installed net capacity of 3,142 MW, comprised of 1,724 MW thermal, 893 MW hydro and 525 MW combustion turbines. Énergie NB Power’s industrial and corporate networks support power generation plants as well as business offices, all with different business needs. From these networks, the OSIsoft PI™ application and ICCP protocol are used for monitoring of the power stations.

The Challenge icon
The challenge

Énergie NB Power wanted to prevent cyber attacks that could result in power outages, loss of revenues and physical damage to equipment. The company was also challenged with the task of complying with NERC-CIP standards and cyber-security requirements. The business determined that using firewalls to allow real-time data flows from a control network to an enterprise network introduced unacceptable risks to safe, correct, continuous and efficient power generation operations.

Waterfall solution - icon
Waterfall solution

Waterfall Unidirectional Security Gateways were deployed at each power plant, along with Waterfall’s OSIsoft PI and ICCP server replications. The Waterfall Gateways replicated PI servers and ICCP servers unidirectionally from each plant’s OT network to the Énergie NB Power enterprise network. On this external network, users and applications continue to interact normally and bi-directionally with the replica servers.

Results and benefits - icon
Results & benefits

Security: Absolute protection from online attacks originating on the IT network, and from Internet-based attacks.

Visibility: Online access to real-time operations data, with no change in end-user or business application- integration procedures.

Compliance: Reduced NERC CIP compliance costs for Énergie NB Power.

Operational Costs: Reduced operating costs associated with training, administration, audit, testing, and monitoring costs when compared to a firewall-based solution.

vertical red line
Theory of Operation
Click to enlarge

“Waterfall’s Unidirectional Security Gateways have proven to be highly reliable and easily integrated into our existing networks. They are instrumental in helping us comply with the NERC-CIP standards and secure our critical assets against any type of external cyber-attack or hacking threats”

Greg Wright, Énergie NB Power IT Specialist

Waterfall Unidirectional Security Gateways replace firewalls in industrial network environments, providing absolute protection to control systems and industrial control networks from attacks emanating from external networks. Waterfall Gateways contain both hardware and software components. The hardware is physically able to send information in only one direction. The software replicates servers and emulates devices. The gateway software produces an accurate, timely replica of PI and ICCP servers for use by enterprise and external applications and users.

Unidirectional Gateways enable safe IT/OT integration, vendor monitoring, industrial cloud services, and visibility into operations for modern enterprises and customers. The gateways replicate servers, emulate industrial devices and translate industrial data to cloud formats. Unidirectional Gateway technology represents a plug-and-play replacement for firewalls, without the vulnerabilities and maintenance issues that always accompany firewall deployments. Replacing at least one layer of firewalls in a defense-in-depth architecture breaks the attack path from the Internet into critical systems

vertical red line
Unidirectional Security Gateways Benefits:

arrow red rightDramatically reduces NERC-CIP compliance costs.

arrow red rightEliminates any risks from external cyber attacks and human errors.

arrow red right Enables secure, high throughput and real-time access to ICCP and PI server information.

arrow red rightStrong, physical protection for production processes and personnel safety.

vertical red line
Global Cybersecurity Standards Recommend Unidirectional Security Gateways

Waterfall Security is the market leader for Unidirectional Gateway technology with installations at critical infrastructure sites around the world. The level of protection provided by Waterfall’s Unidirectional Security Gateway technology is recognized as best practice by leading industry standards bodies and authorities such as NIST, ANSSI, NERC CIP, ISA / IEC 62443, the US DHS & CISA, ENISA, TS50701 and many others.

Share

Trending posts

Stay up to date

Subscribe to our blog and receive insights straight to your inbox

Tags

The post Securing Power Generation At New Brunswick Power appeared first on Waterfall Security Solutions.

]]> Cybersecurity For Hydropower Generation https://waterfall-security.com/ot-insights-center/power/cybersecurity-for-hydropower-generation/ Tue, 23 May 2017 08:58:00 +0000 https://waterfall-security.com/?p=10402 Compliance with NERC-CIP standards while protect critical assets from cyberattacks and protecting operational and business processes efficiencies.

The post Cybersecurity For Hydropower Generation appeared first on Waterfall Security Solutions.

]]>
OT Insights CenterPowerCybersecurity For Hydropower Generation

Cybersecurity For Hydropower Generation

Protecting The Connected Hydropower Plant From Evolving Cyber Threats
Cybersecurity For Hydropower Generation
Customer/ Partner:

Canadian power generation company.

Customer Requirement:

To comply with NERC-CIP standards and protect critical assets from cyberattacks while protecting operational and business processes efficiency.

Waterfall’s Unidirectional Solution:

Secure the control system network perimeter from external threats with Unidirectional Security Gateways, and enable Real-Time Enterprise Connectivity & 3rd Party Monitoring creating fully operational OSIsoft PI, GE OSM turbine monitoring, and ICCP server replicas.

The Growing Hydropower Industry And Facing Modern Cyber Threats

With an average growth of 4% per year, hydropower has become the leading renewable source for electricity generation – globally supplying 71% of all renewable electricity. Today, hydropower offers not only clean energy but its infrastructure is also used for freshwater management, such as water supply, and flood management. The importance of hydropower has increased significantly in the past decade, leading to the adoption of innovative technology, advanced control systems, and stronger equipment.

When malicious attackers gain access to an industrial control system they are able to sabotage industrial control and safety processes, leading to costly outages, damaged turbines, threats to personnel safety and even environmental disasters. This is why NERC CIP and other industrial security regulations urge operators to thoroughly secure IT/OT interconnections in order to protect these highrisk access points against cyber terrorism and other attacks. The question is – how to achieve 100% protection from remote cyber threats?

The Challenge icon
The challenge

To secure the safe, reliable and continuous operation of hydropower control and safety networks from threats emanating from less trusted external networks, yet still provide real-time access to operations data to enterprise users and applications, as well as to turbine vendors and other third parties. The control systems in modern plants are responsible for power generation and water supply which ultimately affect the lives of millions of people. Protecting these critical assets with software (firewalls or other IT security measures) is not enough as all software by nature can be compromised.

Waterfall solution - icon
Waterfall solution

A Waterfall Unidirectional Gateway was installed between the industrial control system network and the enterprise network. Unidirectional Gateway software connectors replicate OSISoft PI, GE OSM, and ICCP servers from the control network to the enterprise network where enterprise clients can interact normally and bi-directionally with the replicas. A file server replication connector was also deployed, to eliminate the routine use of USB drives and other removable media. Enterprise users and applications, as well as vendors and NERC Balancing Authorities interact bi-directionally with replica servers, while the Unidirectional Gateway hardware physically prevents any Internet-based attack from reaching protected control networks.

Results and benefits - icon
Results & benefits

100% Security: The industrial network is now physically protected from threats emanating from external, less-trusted networks.

100% Visibility: The enterprise network continues to operate as if nothing has changed. Instead of accessing servers on the critical operational network, users on the external network now access real-time data from replicated servers for all informational and analytical requirements.

100% Compliance: Unidirectional Gateways are recognized by the NERC CIP standards, as well as other North American and global industrial cyber security standards and regulations.

vertical red line
Theory of Operation
Click to enlarge

Waterfall Unidirectional Security Gateways replace firewalls in industrial network environments, providing absolute protection to control systems and industrial control networks from attacks emanating from external less-trusted networks. Unidirectional Gateways contain both hardware and software components. The hardware components include a TX Module, containing a fiber-optic transmitter/ laser, and an RX Module, containing an optical receiver, but no laser. The gateway hardware can transmit information from an industrial network to an external network, but is physically incapable of propagating any virus, DOS attack, human error or any cyber attack at all back into the protected industrial network. The Gateways enable vendor monitoring, industrial cloud services, and visibility into operations for modern enterprises and customers. Unidirectional Gateways replicate servers, emulate industrial devices and translate industrial data to cloud formats. As a result, Unidirectional Gateway technology represents a plug-and-play replacement for firewalls, without the vulnerabilities and maintenance issues that accompany firewall deployments.

vertical red line
Unidirectional Security Gateways Benefits:

arrow red rightSafe integration of hydropower safety & control systems with external networks

arrow red rightSafe, continuous monitoring of critical systems

arrow red rightCompliance with industrial cyber-security regulations, standards and best-practice guidance, including NERC CIP

arrow red rightSafe cloud vendor/services supply chain integration

arrow red rightReplacing at least one of the layers of firewalls in a defense-indepth architecture with Unidirectional Gateways breaks the chain of malware infection and prevents pivoting attacks from less-trusted IT networks

vertical red line
Global Cybersecurity Standards Recommend Unidirectional Security Gateways

Waterfall Security is the market leader in Unidirectional Gateway technology with installations at critical infrastructure sites across the globe. The enhanced level of protection provided by Waterfall’s Unidirectional Security Gateway technology is recognized as best practice by many leading industry standards bodies, including NIST, ANSSI, NERC CIP, the ISA, the US DHS, ENISA and many more.

Share

Trending posts

Stay up to date

Subscribe to our blog and receive insights straight to your inbox

Tags

The post Cybersecurity For Hydropower Generation appeared first on Waterfall Security Solutions.

]]>