How shocking! Once again the private sector, in this case the Bonneville Power Administration, which supplies wholesale electric power to regional utilities in the Pacific Northwest, was found to be non-compliant in a number of areas, according to an article at infosecurity-magazine.com.
To me this smacks of a for-profit utility finding it more expedient to maximize profits before maximizing security for a critical infrastructure. “We the People”, our security, once again, takes a back seat to doing the right thing.
The Department of Energy’s Office of Inspector General was performing an audit and found significant problems with the system. Of course Bonneville Power Administration responded that the report contained “erroneous assertions”.
This points out a number of problems. DOE is in charge of locating and fixing critical infrastructure problems within the energy sector. Do they, in turn, report to DHS if it has to do with critical infrastructure?
Does DHS oversee DOE’s cybersecurity problems, their critical infrastructure problems or…?
Cross-posted from To Inform is to Influence