Cyber-Informed Engineering Implementation Guide

Wright, Virginia L; Meng, Jakob P; Anderson, Robert S; Gellner, Jeffrey R; Barnes, Lance B; Chanoski, Samuel Douglas; Edsall, Robert M; Holtz, Mary Rose; Jones, Jeremy Michael; Le Blanc, Katya L; Mahanes, Joseph C; McJunkin, Timothy R; Robinson, Jessica; Rucinski, Daniel John; Shannon, Gregory Edward; Welch, Justin J; Ayala, Marco; Atkins, Victor; Baker, KatherineAnne; Castillo, Krystel; Cox, Joel; Gale, Tim; Graham, Rich; Groves, Daniel; Johnson, Stephanie; Kishter, Lindsay; Macwan, Richard; Loo, Sin Ming; McFly, Shane; Martin, Maurice; Morris, Matt; Ohrt, Andrew; Sachs, Marc; Venkataramanan, Venkatesh; Waligoske, Emily; Williams, Gareth

Title: Cyber-Informed Engineering Implementation Guide

Program Document · Tue Sep 05 00:00:00 EDT 2023

OSTI ID:1995796

^[1]; Meng, Jakob P ^[1]; Anderson, Robert S ^[1]; Gellner, Jeffrey R ^[1]; Barnes, Lance B ^[1]; Chanoski, Samuel Douglas ^[1];

^[1];

^[1]; Mahanes, Joseph C ^[1];

^[1]; Robinson, Jessica ^[1]; Rucinski, Daniel John ^[1]; Shannon, Gregory Edward ^[1];

^[1]; Ayala, Marco ^[2]; Atkins, Victor ^[2]; Baker, KatherineAnne ^[3]; Castillo, Krystel ^[4] more »

Idaho National Laboratory
1898 & Co
Nexight
University of Texas, San Antonio
West Yost Associates
West Yost
Department of Energy
National Renewable Energy Laboratory
Boise State University
Auburn University

This Implementation Guide describes the principles of Cyber-Informed Engineering (CIE) and outlines questions that engineering teams should consider during each phase of a system’s lifecycle to effectively employ these principles. It describes what it means to engineer systems in a cyber-informed way, rather than offering a comprehensive, step-by-step process or procedure for CIE implementation. This guide complements—but does not replace—the application of cybersecurity standards or practices currently in place within an organization. Engineers and technicians that design critical energy infrastructure installations can use this Implementation Guide to integrate the 12 principles of CIE into each phase of the engineering lifecycle, from concept to retirement. The guide is aimed at system or design engineers, rather than software engineers or operational cybersecurity practitioners. The engineers who design, build, operate, and maintain the physical infrastructure are best positioned to leverage a system’s engineering design to diminish the severity of cyber attacks or digital technology failures. CIE expands cybersecurity decisions into the engineering space, not by asking engineers to become cyber experts, but by calling on engineers to apply engineering tools and make engineering decisions that improve cybersecurity outcomes. CIE examines the engineering consequences that a sophisticated cyber attacker could achieve and drives engineering changes that may provide deterministic mitigations to limit or eliminate those consequences.

View Program Document

Cite

Export

Save

Research Organization:: Idaho National Laboratory (INL), Idaho Falls, ID (United States)

Sponsoring Organization:: 58

DOE Contract Number:: DE-AC07-05ID14517

OSTI ID:: 1995796

Report Number(s):: INL/RPT-23-74072-Rev000

Country of Publication:: United States

Language:: English

Similar Records

Cyber-Informed Engineering Implementation Guide: Version 1.0 [Slides]

Technical Report · Mon Aug 07 00:00:00 EDT 2023 · OSTI ID:1995796

Anderson, Robert; Atkins, Victor; Ayala, Marco; +37 more

Cyber-Informed Engineering Principles: What’s in it for me?

Conference · Mon Oct 23 00:00:00 EDT 2023 · OSTI ID:1995796

Chanoski, Samuel Douglas

Cyber-Informed Engineering Guidance—Implementing CIE in Early Systems Engineering Lifecycle Stages

Conference · Tue Jun 20 00:00:00 EDT 2023 · OSTI ID:1995796

Eggers, Shannon Leigh; Le Blanc, Katya L; Anderson, Robert S; +1 more

Related Subjects

42 - ENGINEERING
97 - MATHEMATICS AND COMPUTING
CCE
Consequence-driven Cyber-Informed Engineering
Cyber-Informed Engineering
CIE
Cyber Resilience
Cybersecurity Resilience
Energy Transition
Integrating Cybersecurity
cyber risk
Cyber Supply Chain Risk
Cyber-Resilience
Cyber
security by design
secure by design

Title: Cyber-Informed Engineering Implementation Guide

Citation Formats

Similar Records

Related Subjects