Skip to main content

Cybersecurity and Resilience

Securing the grid from cyberattacks is more complex than ever. Although there is no shortage of vendors offering solutions, objective voices are hard to come by. Thats why NREL established the Cyber-Physical Systems Security and Resilience R&D Center.

Photo of men working on a cybersecurity test bed in a laboratory

The center, located at NREL's Energy Systems Integration Facility, serves as an independent resource for utilities and energy-sector companies to evaluate the security of new technologies and get objective insights on organizational cybersecurity efforts from experts in the field.

Download our cybersecurity brochure



What Our Partners Say

"NREL's cybersecurity team provided the coordination and facilities to perform meaningful cybersecurity tests in a live distributed grid environment. This was all accomplished working with multiple vendors, integrators, and a very condensed schedule. The experience and exposure has been invaluable to BlackRidge Technology. The lessons we learned, along with the other cybersecurity vendors, will provide a blueprint for others in the industry, saving testing time and costs, and will allow us all to better protect the nation's distribution grid infrastructure."

- John Thuotte, Project Manager, BlackRidge Technology

Nine-Layer Security Testing

NREL researchers and leading cybersecurity vendors designed and built the Test Bed for Secure Distributed Management—a hardware and software system that mimics the communications, power systems, and cybersecurity layers for a utility's distribution system. The test bed incorporates a nine-layer security architecture (seven-layer OSI model + two upper layers of GridWise Architecture Council Stack). It is applicable to any multisite information system in any industry that has real-time transactions between different actors (end users and/or systems), including online energy devices, electric vehicles, wind turbines, home energy networks, thermostats, and demand response systems.

Cybersecurity Road Mapping

NREL offers a cybersecurity assessment service designed to help companies maximize their cybersecurity efforts and dollars. Using a tool that draws on two of the best known and most respected security guidance documents in the electric sector, NREL's assessment gives immediate visibility into the maturity of a company's cybersecurity operations relative to industry standards. A customized road map is then created that identifies actionable items and prioritizes them so the company knows where to focus first.

Additional Capabilities

  • Detailed software vulnerability scans for code under development and binary executables in use or in the implementation phase
  • Cybersecurity awareness training for technical and nontechnical audiences
  • Enterprise-wide security architecture development
  • Streamlining business units to maximize cybersecurity awareness
  • Organizational training on new cybersecurity technologies and business processes.


Erfan Ibrahim

Center Director, Cyber-physical Systems Security And Resilience | 303-384-7433

Leverage our cybersecurity research capabilities

work with us