Electric Power Research
Institute
11 November, 2005
Mr. Chuck Orrico
President & CEO
DYONYX
1235 North Loop West
Suite 1220
Houston, TX 77008
Dear Chuck,
I am writing to express our sincere thanks for the outstanding report that your team recently delivered in support of the security initiatives at EPRI. The Guideline for Securing Control System and COrporate Network Interfaces report, dated October 2005, presented viable alternatives for securing critical infrastructure control system networks and will provide our members wit insight into the benefits and concerns as appropriate to their operations.
The electric power industry is continuously working to maintain the security and reliability of the electric transmission grid and generation resources. Our research, supported by firms like DYONYX, is strategic in furthering our ability to support the electric utility industry in a timely and effective manner. Your previous reports, Securing the Pi Historian Database, Network Defense in Depth Guideline / Strategic for Detecting & Mitigating Hacker Attacks, and the SCADA Systems Security Guide all provided valuable insight into the world of cyber and physical security, the necessary steps to take in the design, configuration, and operation of secure network infrastructures, the need for appropriate governance structures, policies, and procedure, the ongoing requirement of both physical and cyber security training, and the continued need to cojply with security best practices and standards. These reports are important components of our effort to prepare the electric power industry with intelligence for designing and maintaining secure operations.
We look forward in continuing our association with your organization in the upcoming Red Team Cyber Security Project, the industry survey project, and other initiatives as may be appropriate in the coming year. Thanks again!
Sincerely,
Thomas E. Kropp
Manager, CIP Projects
EPRI
To learn more, visit www.dyonyx.com
