At Kerala State Electricity Board Limited (KSEBL), the Cyber Security Department is at the forefront of ensuring the safety and reliability of our power system infrastructure. We diligently follow the directives of the Ministry of Power (MoP), the National Critical Information Infrastructure Protection Centre (NCIIPC), sectoral Computer Emergency Response Teams (CERTs), and the Cyber Security Guidelines issued by MoP. Here, we outline the major activities and initiatives undertaken by our Cyber Security Department:
1. Identification of Chief Information Security Officer (CISO):
- The Chief Engineer (IT, CR & CAPs) is designated as the Chief Information Security Officer (CISO) of KSEBL.
- The Deputy Chief Engineer (IT, CR & CAPs) serves as the alternate CISO.
- Sectoral Information Security Officers (ISOs) are appointed to facilitate effective coordination of cyber security activities.
2. On-boarding Cyber Swachta Kendras (CSK):
- KSEBL actively collaborates with the Cyber Swachta Kendra (CSK), specifically the Botnet Cleaning and Malware Analysis Centre.
- CSK works in partnership with industry and academia to detect and address systems infected by bots.
- We engage with Internet Service Providers to notify end users about system infections and provide assistance in cleaning their systems.
- Regular monitoring of alerts and vulnerabilities reported by CSK ensures timely corrective actions.
3. Compliance with Advisories from CERT-IN & NCIIPC:
- Our team closely monitors and takes action on advisories received from CERT-IN (Indian Computer Emergency Response Team).
- We submit Vulnerability Closure Reports to CERT-IN to address identified issues promptly.
4. Implementation of Cyber Crisis Management Plan (CCMP):
- KSEBL is committed to preparing and implementing a Cyber Crisis Management Plan (CCMP) in line with the guidelines.
- CCMP documents are vetted by the respective CERTs and approved by CERT-In.
- We are currently in various stages of CCMP development and implementation across different wings of KSEBL, including Generation, Transmission, System Operation, and Distribution.
5. Identification of Critical Information Infrastructure (CII):
- We have initiated the identification of Critical Information Infrastructure (CII) across various segments.
- Draft CII documents have been submitted to NCIIPC, and necessary modifications are being made based on feedback received.
6. ISMS (ISO 27001) Implementation:
- We are in the process of appointing a Cyber Security Consultant to carry out several critical tasks:
- Security auditing of all IT/OT Systems in Distribution, Transmission, Generation & Corporate Sectors.
- Preparation of a comprehensive Cyber Security Policy for the organization.
- Conducting compliance audits, including configuration reviews of critical devices and IT general control reviews.
- Gap analysis of IT/OT Systems for physical, administrative, logical, and policy-related controls.
- ISO 27001:2013 Certification Support for developing and implementing an Information/Cyber Security Framework.
- Training, Capacity Building, and Continued Audit Support.
7. Cyber Security Audit / Vulnerability Assessment & Penetration Testing (VAPT):
- In alignment with guidelines, we conduct cyber security audits and VAPT on IT/OT systems of utilities every six months.
- Notable achievements include the successful completion of VAPT for the State Load Dispatch Centre, SCADA/DMS systems, and Generating Stations.
8. IT Security Policy Implementation:
- We are in the process of drafting an interim IT Security Policy, which is part of the larger e-tender for implementing ISO 27001 in KSEBL.
9. Conducting Cyber Mock Drills:
- KSEBL actively participates in mock drills conducted by sectoral CERTs and CERT-In.
- These drills help us assess our readiness to respond effectively to cyber incidents.
- Participation includes officers from various wings of KSEBL, and even our Board Members actively engage in such drills.
E-File (DDFS) Implementation:
- Recognizing the importance of efficient digital file processing, we are configuring and implementing an off-the-shelf product across selected KSEBL offices.
Data Centre and Data Recovery Centre:
- We manage the Data Centre in Vydyuthibhavanam, Thiruvananthapuram, and the Disaster Recovery Centre at Infopark, Cherthala.
- Services for the above infrastructure are provided by M/s KEPCO KDN, ensuring seamless operations and reliability.
- This infrastructure also includes software applications implemented under Part-A of RAPDRP.
- Our IT/network infrastructure at KSEBL headquarters comprises advanced components, including core network switches, distribution switches, desktops/laptops, network printers, wireless access points, and more.
- We offer comprehensive end-user support for various aspects, including hardware, software, applications, networks, email, and more.
- Management of KSEBL's official e-mail system (kseb.in).
- Providing support for e-tendering processes.
- Deployment of a Video Conferencing System.
- Finalizing specifications for IT equipment, computers, peripherals, and more.
- Offering support for camera surveillance at various locations.
In summary, our Cyber Security Department at KSEBL is committed to ensuring the highest levels of protection for our power system infrastructure. Through proactive measures, regular assessments, and continuous efforts, we are well-prepared to counter evolving cyber threats, guaranteeing a secure and reliable power supply to our valued customers.