Skip to main content

Threat Detection and Response with Data Analytics

This project involves developing advanced analytics on operational technology cyber data in order to detect complex cyber threats in the power grid. The outcomes will help power operators differentiate between cyber and non-cyber-caused incidents—for example, physical attacks or natural hazards, using available cyber data.

Being able to differentiate cyber threats from non-cyber threats will help operators make determinations about the type of incident and the root cause so that they can formulate more accurate response and mitigation plans.

As part of this multi-laboratory and industry effort, the project team is evaluating which sensor data is most valuable and could provide the biggest positive impact for grid resiliency and security in the event that a threat is successfully detected.  In addition, the team is developing analytics to identify emerging cyber incidents on the power grid using the sensor data obtained.

Related Projects

  • Cybersecurity for Renewables, Distributed Energy Resources, and Smart Inverters

    The objective of this project is to develop a holistic attack-resilient architecture and layered

  • Grid Architecture

    The Grid Architecture project objectives are to provide a set of architectural depictions, tools,

Project Quick Facts

Topic ID: 1.4.23
Funding : $3 Million
Duration: 3 Years
Status: Current

Technical Project Team

  • Sean Peisert,

Project Partners

Electric Power Board
National Rural Electric Cooperative Association

Partner With Us

The Grid Modernization Laboratory Consortium is a strategic partnership between the U.S. Department of Energy and 13 National Laboratories to bring together leading experts and resources. If you would like to partner with GMLC, contact us at the link below.

Contact Us.