In case of suspecting or being victimzed by a cyber-security incident, please contact us via the following means:

NCSA NCSA Call to: 16555 NCSA NCSA Send by Email
quick call
NCSA
25 October 2023

In Order to Enhance the Security of the Electricity and Water Sector The National Cyber Security Agency Issues Recommendations for Operational Technology Security Standards

On Wednesday, October 25, 2023, the National Cyber Security Agency (NCSA) announced the issuance of recommendations for securing operational technology in the electricity and water sector “ISA/IEC 62443” in partnership with Qatar General Electricity and Water Corporation (KAHRAMAA). These recommendations aim to adopt best practices and international standards in the electricity and water sector, Thus, the global standards “ISA/IEC 62443” were adopted. Which is an international standard developed by the International Control Association, and the International Electrical Commission. In order to enhance the operational technology’s ability to face cyber threats and offer a framework for entities to strengthen their resilience plans. The recommendations also included the need to consider appointing an expert or specialist in operational technology security in all concerned organizations in the electricity and water sector. The role of the expert will include developing strategic plans and following up on their implementation with regard to assessing cyber risks, and best practices to confront them and raising the level of internal systems in the concerned organizations in terms of cybersecurity. NCSA acknowledges the critical role of human resources and the necessity to bolster cyber readiness in Qatar's electric and water sector. As a result, NCSA initiated the second training course in operational technology security standards, in collaboration with Qatar General Electricity and Water Corporation "KAHRAMAA". This training is part of a program that commenced on October 15, 2023, and which its primary objective is to equip nearly 70 specialists in the field of information security and operational technology. On this occasion, Eng. Dana Al-Abdulla, Director of Governance and Assurance Affairs at the National Cyber Security Agency said, " As part of the NCSA’s role in developing and updating policies, governance mechanisms, controls and guidelines to enhance cyber security in coordination with relevant entities, monitor compliance and elevate cyber security in critical sectors, the second training courses on implementing operational technology security standards in the electricity and water sector was launched this week, as part of a series of training courses that will continue until early next year.” Mrs. Al Abdulla emphasized the importance of collaborative work and a supportive approach to enhance cyber security in critical sectors, particularly in addressing the evolving threats and risks within the operational technology systems. This can be achieved by collaborating with strategic partners to establish key governance controls, build capabilities and strengthen resilience plans in critical sectors in order to protect the State of Qatar’s cyberspace. It also involves ensuring compliance and continuously monitoring adherence to these measures. In addition, Eng. Mohamed Yosef Al Kubisi, Director of Electricity Control Department at KAHRAMAA, praised this step for its strategic importance, whereas the strength of the electric and water infrastructure depends on the strength of its cyber security. Which reflects positively on electric and water operations in the State of Qatar, which is largely related to economic, social, and security stability. Mr. Al Kubisi also added: “We thank the National Cyber Security Agency for their efforts and extensive works with all entities, we are pleased to be one of the reliable partners whose participating in enhancing the State’s cybersecurity, and we look forward to continuing joint work for the public interest.” In a dedicated effort to enhance cybersecurity, KAHRAMAA is implementing a series of strategic initiatives. These include the adoption of cutting-edge technologies, strategic partnerships, rigorous employee training programs, and close collaboration with relevant entities. Furthermore, KAHRAMAA has invested in state-of-the-art cybersecurity technology for the national control centers overseeing electricity and water, ensuring adherence to stringent international and national cybersecurity standards. These recommendations complement the National Cyber Security Agency’s efforts in the assessment of the cyber security landscape in the electricity and water sector in collaboration with KAHRAMAA, which began in 2021 and evaluated various power generation stations in the State of Qatar. The National Cyber security Agency has also developed necessary plans to enhance cyber security readiness levels in the electricity and water sector, aiming for high levels of flexibility and business continuity in this critical sector. This step is part of NCSA's ongoing efforts to enhance cyber security and protect operational technology in cooperation with its key partners in critical infrastructure sectors, stressing on its role in enhancing and achieving its vision as a trusted partner in leading a secure cyberspace, ensuring the security and prosperity for the State of Qatar.

Latest News

View more