The New York Power Authority (NYPA) announced a new deal with cybersecurity firm IronNet and Amazon Web Services that will help the country's largest state public power organization bolster its cybersecurity defenses.
Simple steps can make the difference between losing your online accounts or maintaining what is now a precious commodity: Your privacy.
Read nowVictor Costanza, deputy CISO at the NYPA, said the rise in sophisticated cyber attacks prompted them to help municipal utilities implement a strong security program that can detect and mitigate attacks in real-time.
"With the technologies provided by IronNet and AWS, the I.T. and power infrastructures in NYPA's supply chain ecosystem can collect and share anonymized cyber threat information so we can defend our enterprise networks collectively, raising the security posture of all of us throughout the state," Costanza said.
The deal comes two days after the Cybersecurity and Infrastructure Security Agency (CISA) released an alert detailing a variety of tactics used by Russian state-sponsored groups to attack local and tribal governments across the U.S. between September 2020 and December 2020.
CISA also specifically cited previously reported attacks by Russian groups on critical infrastructure in Ukraine. A US Homeland Security report from 2016 said 225,000 customers were left without power two days before Christmas because of the Russian attack on three regional electric power distribution companies.
Bill Welch, co-CEO of IronNet, said that in the same way utilities band together to provide mutual aid after damaging weather events, NYPA is making collaborative responses to cyberattacks possible.
"We are proud to work with NYPA to enable all public utility stakeholders to adopt a proactive defense against any cyber adversary with an eye on the grid -- from criminal groups to nation-states," Welch said.
NYPA will be adopting IronNet's Collective Defense solution, which is supported by AWS. The tool will allow municipal utilities in New York and their partners "to create a dynamic, radar-like view of the attack landscape that provides visibility into a wider and deeper range of threats across the state's entire power grid."
IronNet and AWS ran a pilot program with five NYPA municipalities before the deal was signed and decided to expand it due to its success.
"Powered by a network detection and response system that tracks network anomalies with behavioral analytics, NYPA's key supply chain partners can use IronNet's Collective Defense platform to collaborate in real-time to better detect and defend against attacks. This approach further enhances the resilience of New York's grid amidst the escalating prevalence of attacks on U.S. critical infrastructure," IronNet explained in a statement.
"Defenders of the state's I.T. and power infrastructure will receive alerts on anomalous network behaviors correlated with other Collective Defense participants from the U.S. energy sector at large. In the event of a coordinated attack, the community also benefits from expert guidance from the top cybersecurity professionals of IronNet's Security Operations Center."