GridSecCon 2021 Registration Is Open - Tap To Learn More

Registration has opened for GridSecCon 2021. Register here. The event takes place virtually on October 19–20. Training opportunities are available on October 18, including a four-hour Sneak Peek at SANS ICS 418–ICS for Managers Course. The event agenda is available here.

Register Now

Kaseya VSA Ransomware Update - Tap To Learn More

The E-ISAC is actively monitoring the developments related to the Kaseya VSA ransomware attack impacting managed service providers and their customers. E-ISAC members and partners can access the Portal for updates. Information can also be found in the post below.

Learn more

E-ISAC/Dragos Announce ICS/OT Threat Initiative - Tap To Learn More

The E-ISAC and Dragos have launched a new joint initiative to strengthen industrial cybersecurity collective defense and community-wide visibility for the North American electricity industry.

Learn more

GridEx VI - Tap To Learn More

Registration is open for Lead Planners and Planners for GridEx VI, which takes place November 16-17, 2021. Register here.

Register Now

Kaseya VSA Ransomware Attack Update

The E-ISAC is actively monitoring the developments related to the Kaseya VSA ransomware attack impacting managed service providers and their related customers. The E-ISAC is fully engaged with its members and partners as well as the Electricity Subsector Coordinating Council (ESCC) to provide updated guidance, relevant context, and rapid exchange of information. At this time, all E-ISAC technology systems remain operational and secure.

The E-ISAC continues to distribute and curate information for members and partners, including highlighting key resources to assist in investigation, response, and mitigation. Members and partners are encouraged to share information in the E-ISAC Portal or with E-ISAC Operations. Below is a list of key resources; the E-ISAC will be adding to this list as relevant.

Mission: The E-ISAC reduces cyber and physical security risk to the electricity industry across North America by providing unique insights, leadership, and collaboration.

Vision: To be a world-class, trusted source of quality analysis and rapid sharing of security information for the electricity industry.

Services

Connecting security operations to industry.

Operations

Become a force multiplier.

Engagement

Become more efficient.

Technologies

Learn from the industry.

Depth

Contact Us

Share Information with the E-ISAC
E-ISAC Operations is available 24/7 via phone, email, and the E-ISAC Portal.

Phone: (202) 790-6000
Email: Operations@eisac.com
E-ISAC Portal

Member Services
Want to get more involved with the E-ISAC?
MemberServices@eisac.com

Events
For more information about our events, workshops, and exercises.
Events@eisac.com

News and Media
Communications@nerc.net

Cybersecurity Risk Information Sharing Program (CRISP)
CRISP enables and manages the near real-time sharing of IT network information between private sector electricity utilities and the Department of Energy. For additional information: CRISP@eisac.com

Regulatory Event Reporting
Effective January 1, 2021, applicable NERC registered entities must comply with the expanded incident reporting requirements in the revised Reliability Standard CIP-008-6. Reports must be submitted to the E-ISAC. Reports to the E-ISAC may be submitted through any method specified in the Standard. Reporting options include NERC EOP-004, a copy of DOE OE-417 or directly through the E-ISAC Portal, contacting the E-ISAC Watch Team here or calling 202.790.6000. Additional information about the updated requirements can be found here.

Join the E-ISAC

Who can be members of the E-ISAC?

All vetted electricity owners and operators in North America may participate in E-ISAC activities. Although the ISAC framework is a U.S. government construct, the E-ISAC extends across the bulk power system territory, which includes all of the United States and Canada, and portions of Mexico. Suggested members should include titles of Chief Security Officer, Security Director, Security Supervisor, General Manager, and Intelligence/Information Analysts. Membership is free. For more information on joining the E-ISAC, email: operations@eisac.com

Why participate?

E-ISAC members receive: private-level situational awareness on security threats, including alerts; physical security and cyber security bulletins; remediation; task force reviews; events calendars; and other security-specific resources. Members are encouraged to use the E-ISAC's trusted forums to network and share candidly, directly with peers.