Public Consultation on Cybersecurity Risk Assessment Methodologies

Closes 5 Dec 2024

Opened 5 Nov 2024

Overview

Under Article 18 of the Network Code for Cybersecurity (NCCS), the European Network of Transmission System Operators for Electricity (ENTSO-E) in cooperation with the EU DSO entity (DSO Entity) has developed a proposal for methodologies for cybersecurity risk assessment. The document contains methodologies for risk assessments at three levels: the Union-wide risk assessment, the regional risk assessment, and the risk assessment at member state. No methodology is defined for risk assessments at entity level, as the entities may choose their own methodology as long as it complies with Article 26 of the NCCS.

The methodology, as stated in the NCCS, considers only the consequences to the grid’s operational security of cyber-attacks at each level. The aim of these methodologies is to ensure the consistent assessment of risk across the different levels defined by the NCCS.

Why your views matter

Since the methodologies will apply to variety of entities, it is crucial for ENTSO-E and DSO Entity that they are clear and useful to them. Therefore, it has been decided to launch a public consultation to ensure that various stakeholders can have their say on the document before it is sent to the competent authorities for final approval.

Give us your views

Events

  • NCCS: First public consultation workshop on Risk Assessment Methodologies

    From 13 Nov 2024 at 13:00 to 13 Nov 2024 at 14:30

    Teams invite link can be found in the "Related" section below

  • NCCS: Second public consultation workshop on Risk Assessment Methodologies

    From 2 Dec 2024 at 09:00 to 2 Dec 2024 at 10:30

    Teams invite link can be found in the "Related" section below

Audiences

  • Anyone from any background

Interests

  • Emergency and Restauration
  • Connection Network Codes
  • Capacity Balancing
  • General
  • Market Network Codes
  • System Operations Code
  • General
  • Inter-TSO collaboration
  • Energy Community
  • TYNDP
  • Adequacy reports
  • Scenarios