Schneider Electric, the leader in the digital transformation of energy management and automation, today announced its endorsement and contribution to the U.S. Department of Energy’s Supply Chain Cybersecurity Principles. Developed to foster a more cyber-secure supply chain for critical infrastructure worldwide, this guidance was the result of a joint effort led by the Department of Energy (DOE) Office of Cybersecurity, Energy Security, and Emergency Response (CESER) in collaboration with industry manufactures such as Schneider Electric, its peers, and end users to address supply chain cybersecurity risk.
Schneider Electric has been a leader in the industry collaborating closely with partners on supply chain cybersecurity globally. Schneider has maintained a close partnership with DOE who is working to protect the security and reliability of the energy sector. In 2020, Schneider Electric volunteered to partner with the DOE Office of Cybersecurity, Energy Security, and Emergency Response (CESER) for their Cyber Testing for Resilient Industrial Control System program (CyTRICS). These latest principles are another step in the ongoing and continuous effort to fortify the energy ecosystem.
As the network of energy automation and control system suppliers becomes more connected and integrated, Schneider Electric believes that supply chain cybersecurity is foundational in supporting critical infrastructure resilience – a shared responsibility and risk for all stakeholders within this ecosystem. As the industry faces ongoing challenges, Schneider Electric, and industry peers, recognize the need for standards across the industry and is committed to supporting these principals to minimize risk, strengthen security for all customers, and foster alignment within global supply chain security initiatives.
The Supply Chain Cybersecurity Principles take a great step toward the shared responsibility model, where manufacturers, end users, and government authorities collaborate to align on best practices to enhance supply chain cybersecurity resilience. This guidance, tailored toward suppliers and end users, defines their roles and responsibilities in this model and is based on foundational industry standards, including ISA/IEC 62443, ISO 27000 series, and NIST. While these principles were led by the DOE, the alignment to these global standards, and the endorsement from the G7 summit, demonstrate that the principles serve a broader global group of critical infrastructure stakeholders.
By collaborating with the U.S. Department of Energy, other suppliers, and end users, we are strengthening global supply chains to support critical infrastructure worldwide.