As a utility company, Jemena is heavily reliant on the SCADA systems that monitor and control its numerous networks. Data generated by these operational technology (OT) systems is relayed to the company’s data centres and processed by a fleet of 70 servers and 30 workstations.
“Having effective security in place is vital to ensure we are able to meet the needs of our customers at all times,” says Calvin Li, Jemena’s SCADA Security Engineer. “If any problems occurred in our control systems it could cause disruption to our customers.”
“We knew we had a range of security elements in place but we wanted to be sure they were operating together as a cohesive whole also, as there is no recognised security framework for operational technology, we felt ISO 27001 would be the best fit for us.”
ISO 27001 certification provides the Jemena SCADA management team with confidence that it has in place proper guidelines and best practices to ensure the highest possible security standards are in place.
Jemena now has a comprehensive, documented security framework in place that all staff can follow into the future.
Li says that, because energy companies are heavily monitored, having compliance is clear evidence that Jemena has taken all steps necessary to ensure the security of its critical SCADA infrastructure, and is operating in alignment with a recognised international standard.
Furthermore, it provides consumers with confidence that Jemena applies best practice management systems and processes.
Additionally, Jemena benefits from compliance with the ISO 55001 asset management standard. This serves to further strengthen security and ensure Jemena is best placed to meet any future issues that might arise.