The National Cybersecurity Center of Excellence (NCCoE) has released the final version of NIST Cybersecurity Practice Guide SP 1800-2, Identity and Access Management (IdAM). This guidance helps provide electric utilities with a more secure and efficient way to manage access across their platforms.
The final guide goes beyond the traditional NIST standard document. It is a detailed example of how an electric utility company can improve the security of its information technology and operational technology by creating a converged IdAM platform to provide a comprehensive view of all users and their access rights across the enterprise. This can reduce the risk of malicious or untrained people gaining unauthorized access to critical infrastructure components and interfering with their operation, thereby lowering overall business risk.
Arch Street is honored to have played a small role in the development of the guide as a member of the Energy Community of Interest which advised the NCCoE team on key elements of the IdAM guide.