Nebraska Public Power District Fights Phishing, Meets Compliance Requirements with Nexpose and Metasploit
公司规模
Large Corporate
地区
- America
国家
- United States
产品
- Nexpose Enterprise Edition
- Metasploit Pro
技术栈
- Vulnerability Management
- Penetration Testing
实施规模
- Enterprise-wide Deployment
影响指标
- Customer Satisfaction
- Digital Expertise
- Productivity Improvements
技术
- 网络安全和隐私 - 网络安全
- 网络安全和隐私 - 安全合规
- 网络安全和隐私 - 端点安全
适用行业
- 公用事业
适用功能
- 商业运营
- 设施管理
服务
- 系统集成
- 培训
关于客户
Nebraska Public Power District (NPPD) is the largest electric utility in the state of Nebraska, providing electrical power to 86 of the 93 counties. As a vertically integrated utility, NPPD handles generation, transmission, distribution, and retail services. The organization is a political subdivision of the state, meaning it operates independently while adhering to state statutes. NPPD employs a mid-size team dedicated to cybersecurity, with additional support from IT personnel across various sites. The organization has been proactive in cybersecurity training and awareness, particularly in combating phishing attacks.
挑战
The Nebraska Public Power District (NPPD) faced a complex compliance situation due to various regulatory mandates, including NERC CIP standards, HIPAA, and specific cyber regulations for their nuclear facility. As a publicly powered state, Nebraska's electric utilities are owned by the public, adding another layer of complexity. NPPD needed to ensure robust cybersecurity measures across its 4,000 assets spread over 19 sites, while also addressing the increasing sophistication of phishing attacks. The organization aimed to improve its overall security posture and meet compliance requirements effectively.
解决方案
NPPD has been a Rapid7 customer since 2009, utilizing Nexpose Enterprise Edition for vulnerability management and Metasploit Pro for penetration testing. The integration of these tools allowed NPPD to efficiently manage and remediate vulnerabilities across its assets. Nexpose provided an intuitive interface and clear remediation steps, making it easy for administrators to perform scans and address vulnerabilities. Metasploit Pro enabled NPPD to conduct phishing exercises and assess user vulnerability, enhancing their overall security posture. The combination of these tools helped NPPD meet compliance requirements and improve cybersecurity awareness among employees.
运营影响
数量效益
Case Study missing?
Start adding your own!
Register with your work email and create a new case study profile for your business.
相关案例.
Case Study
IoT Solutions for Smart City | Internet of Things Case Study
There were several challenges faced: It is challenging to build an appliance that can withstand a wide range of voltage fluctuations from as low at 90v to as high as 320v. Since the device would be installed in remote locations, its resilience was of paramount importance. The device would have to deal with poor network coverage and have the ability to store and re-transmit data if networks were not available, which is often the case in rural India. The device could store up to 30 days of data.
Case Study
Automation of the Oguz-Gabala-Baku water pipeline, Azerbaijan
The Oguz-Gabala-Baku water pipeline project dates back to plans from the 1970’s. Baku’s growth was historically driven by the booming oil industry and required the import of drinking water from outside of the city. Before the construction of the pipeline, some 60 percent of the city’s households received water for only a few hours daily. After completion of the project, 75 percent of the two million Baku residents are now served around the clock with potable water, based on World Health Organization (WHO) standards. The 262-kilometer pipeline requires no pumping station, but uses the altitude differences between the Caucasian mountains and the capital to supply 432,000 m³/d to the Ceyranbatan water reservoir. To the people of Baku, the pipeline is “the most important project not only in 2010, but of the last 20 years.”
Case Study
GPRS Mobile Network for Smart Metering
Around the world, the electricity supply industry is turning to ‘smart’ meters to lower costs, reduce emissions and improve the management of customer supplies. Smart meters collect detailed consumption information and using this feedback consumers can better understand their energy usage which in turn enables them to modify their consumption to save money and help to cut carbon emissions. A smart meter can be defined in many ways, but generally includes an element of two-way communication between the household meter and the utility provider to efficiently collect detailed energy usage data. Some implementations include consumer feedback beyond the energy bill to include online web data, SMS text messages or an information display in consumers’ premises. Providing a cost-effective, reliable communications mechanism is one of the most challenging aspects of a smart meter implementation. In New Zealand, the utilities have embraced smart metering and designed cost effective ways for it to be implemented. The New Zealand government has encouraged such a move to smart metering by ensuring the energy legislation is consistent with the delivery of benefits to the consumer while allowing innovation in this area. On the ground, AMS is a leader in the deployment of smart metering and associated services. Several of New Zealand’s energy retailers were looking for smart metering services for their residential and small business customers which will eventually account for over 500,000 meters when the multi-year national deployment program is concluded. To respond to these requirements, AMS needed to put together a solution that included data communications between each meter and the central data collection point and the solution proposed by Vodafone satisfied that requirement.
