Consequence-Driven Cyber-Informed Engineering (CCE) service expands Black & Veatch’s cybersecurity service offerings to U.S. utilities facing growing digital threats
With digitization proliferating across the infrastructure sector, utilities are facing a higher risk of cybersecurity threats than ever before. To address clients’ changing needs, Black & Veatch has partnered with Idaho National Laboratory (INL) to license the use of Consequence-Driven Cyber-Informed Engineering (CCE), a patent-pending methodology that will improve security within the nation’s utility infrastructure.
The partnership with INL, one of the U.S. Department of Energy’s (DOE) network of laboratories, will expand Black & Veatch’s services to offer proven information security posture enhancement services for operational technology (OT) systems, which are the most vulnerable to cyberattack. By leveraging INL’s significant capabilities in utility security technology, the service offering moves cybersecurity beyond perimeter protections and related technologies into a deeper examination of people, processes and technology within operational technology environments. It aims to minimize the risk of cyber-enabled sabotage of critical business functions and the impacts of ransomware and other emerging threats.
"When CCE was first developed, the world had yet to experience a massive cyberattack affecting critical infrastructure operations. Today, these threats are all too common," said INL Associate Laboratory Director Zach Tudor. "With partnerships like this, we can advance a solution that enables communities to protect their most important assets. We are proud to work with Black & Veatch to expand CCE’s impact around the world.”
Often, cybersecurity consultancies engaged in a project will cease participation once the immediate issue is solved or a final design is delivered. Unfortunately, given the advanced nature of today’s cyber attackers, this approach is insufficient when it comes to protecting the integral systems of critical infrastructure. Supported by DOE’s Office of Cybersecurity, Energy Security, and Emergency Response, the CCE methodology addresses this inadequacy in four phases: consequence prioritization, system-of-systems analysis, consequence-based targeting and mitigations and protections.
“Every day, our utility clients face the very real threat of cyber intrusion, which can be devastating for critical infrastructure and the businesses and communities that rely on reliable service,” said Joe Zhou, associate vice president and , senior managing director of infrastructure modernization at Black & Veatch. “Securing our infrastructure from unauthorized access and sabotage has grown to a top-level concern. Having access and training to apply this leading CCE methodology will ensure that we continue to lead our industry in providing top-level experts and advisors to achieve security requirements.”
- As part of this partnership with INL, Black & Veatch’s own professional service providers will be trained and certified to apply the CCE methodology.
- Learn more about Consequence-Driven Cyber-Informed Engineering (CCE).
- Black & Veatch can help with Cybersecurity Maturity Model Certification (CMMC) under the news framework.
About Idaho National Laboratory
INL is a U.S. Department of Energy (DOE) national laboratory that performs work in each of DOE’s strategic goal areas: energy, national security, science and environment. INL is the nation’s center for nuclear energy research and development. Day-to-day management and operation of the laboratory are the responsibility of Battelle Energy Alliance.
About Black & Veatch
Black & Veatch is an employee-owned global engineering, procurement, consulting and construction company with more than a 100-year track record of innovation in sustainable infrastructure. Since 1915, we have helped our clients improve the lives of people around the world by addressing the resilience and reliability of our most important infrastructure assets. Our revenues in 2020 exceeded US$3.0 billion. Follow us on www.bv.com and social media.
Media Contact Information:
MELINA VISSAT | +1 303-256-4065 P | +1 617-595-8009 M | VissatM@BV.com
24-HOUR MEDIA HOTLINE | + 1-855-999-5991