IT Security Status of German Energy Providers

Julian Dax (1); Ana Ivan (2); Benedikt Ley (1); Sebastian Pape (2),; Volkmar Pipek (1); Kai Rannenberg (2); Christopher Schmitz (2); Andr\'e; Sekulla (1) ((1) University of Siegen; (2) Goethe University Frankfurt)

arXiv:1709.01254·cs.CR·September 6, 2017·2 cites

IT Security Status of German Energy Providers

Julian Dax (1), Ana Ivan (2), Benedikt Ley (1), Sebastian Pape (2),, Volkmar Pipek (1), Kai Rannenberg (2), Christopher Schmitz (2), Andr\'e, Sekulla (1) ((1) University of Siegen, (2) Goethe University Frankfurt)

PDF

Open Access

TL;DR

This study surveys the IT security status of German energy providers, focusing on small and medium-sized companies' compliance with regulations and implementation of security management systems.

Contribution

It provides empirical data on the security practices and regulatory compliance levels of German energy providers based on a targeted survey.

Findings

01

6.9% response rate from surveyed companies

02

Assessment of ISMS implementation among providers

03

Insights into organizational and technical security measures

Abstract

As part of the research project "Secure information networks of small- and medium-sized energy providers" (SIDATE), a survey about the IT security status of German energy providers was conducted. The project itself is focused on the IT security of small- and medium-sized energy providers. In August 2016, 881 companies listed by the Federal Network Agency were approached. Between, September 1 st 2016 and October 15 th 2016, 61 (6.9%) of the companies replied. The questionnaire focuses on the implementation of the regulatory requirements and on the implementation of an information security management system (ISMS). Additionally, questions about the energy control system, the network structure, processes, organisational structures, and the IT department were asked. Questions were asked in German, so all questions and answers are translated for this report. ----- Innerhalb des…

Peer Reviews

No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.

Videos

No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.

Taxonomy

TopicsSmart Grid Security and Resilience · Public Administration and Political Analysis · Digitalization, Law, and Regulation