Protecting power grids is essential to deliver electricity that serves millions of consumers. Transmission substations are a component of the power infrastructure that presents unique security challenges. These important facilities often sit out in the open, in remote locations, and were historically protected by little more than cameras or chain-link fences.

Much of the current concern about securing electrical substations in the United States originated in response to a 2013 sniper attack, using military-style weapons, on Pacific Gas and Electric Company’s Metcalf Transmission Substation in Coyote, Calif., near San Jose. Gunmen fired on 17 electrical transformers, resulting in more than $15 million in damage. The crime is still unsolved.

Security Critical Infrastructure

The North American Electric Reliability Corporation’s Critical Infrastructure Protection (NERC/CIP) guidelines emerged in the aftermath of the attack, triggering growth in security spending to protect utilities.

The latest NERC/CIP Version 6 standards were issued in January 2016, with deadlines of various phases falling in July 2016, April 2017, and the final phase to be completed in September 2018. The earlier deadlines were for high- and medium-risk facilities, and the future deadline covers lower-risk areas. The standards target four areas of concern securing utility sites: security awareness, physical security, remote access connections, and incident response. Although medium- and high-impact facilities tend to be more critical, the connected nature of utility infrastructure means that security is only as strong as the weakest link.

Perimeter Security Requirements

Every facility has a baseline requirement for perimeter security protection around the site, although medium- and high-impact sites will have more stringent requirements. The geography surrounding sites – Is it an urban area or rural? Does the surrounding elevation provide additional lines of sight? – also impacts the types of systems they require.

A lack of similar incidents since the 2013 Metcalf attack could fuel debate on whether the extra security was necessary, and could even lead to a sense of complacency. “A lot of money has been spent on fancy systems at the top tier,” says Greg Hendrix, Sales Lead at Tyco Integrated Security. “But nothing has happened since Metcalf. The concern is that we could lull ourselves into a sense of everything’s OK. We need to find a balance between what’s appropriate and what isn’t, and it’s a moving target. There is no silver bullet.” 

With 35 years in the physical security industry, Hendrix manages a specialized team of 12 pre-sale field engineers that focus on designing electronic security solutions for complex needs as part of Johnson Controls’ Centers of Excellence network.

Protecting power grids is essential to deliver electricity that serves millions of consumers
Every facility has a baseline requirement for perimeter security protection around the site, although medium- and high-impact sites will have more stringent requirements

Cameras And Access Control For High-security Facilities

Hendrix assisted one utility industry customer as a primary design engineer for nine high-impact sites. The sites were high- to medium-tier sites that are part of the nation’s critical infrastructure. Thermal cameras with analytics were positioned to detect intrusions and discern between wildlife and human intruders. Avoiding false alarms is crucial if, for instance, 300 cameras are monitored at a single site. The analytics systems were augmented with pan-tilt-zoom cameras that could be directed to view intruders. Analytics zones were used to trigger large LED light panels to flood various zones with light in case of an intruder. If an intruder gets even closer, it would trigger a recorded voice to tell them to leave.

Metal fences that were 12 feet high and even concrete were used to protect lines of sight to provide a ballistics barrier against gunshots. Mountainous or hilly areas presented additional challenges, as someone could position themselves above the fence line. In some cases, automated gates use multi-factor access control readers (cards and PINs) to allow vehicles to pass and then to close behind them. In other instances, pedestrian-only gates are used, requiring vehicles to remain parked outside the perimeter. Video surveillance watches entrances and exits.

Compliance With NERC/CIP Regulations

Connecting IP cameras into a utility’s IT system, or even using a laptop to program a video system, can introduce cybersecurity vulnerabilities. The idea is not to contribute to the cybersecurity challenges utilities already face to protect the supervisory control and data acquisition (SCADA) monitoring systems and programmable logic controllers (PLCs) used in daily operations.

“The physical threat is evident, but the cybersecurity threat is not so obvious,” says Hendrix. “To focus on one without the other doesn’t make a lot of sense. The physical security folks focus on how we can physically detect and deter, and promote visibility. But we have to remind ourselves that the security of the cyber connection is critical. Security awareness applies to us as integrators as much as customers. We have to find an IT guru within the organization and make sure we are working together.”

Failure to adhere to NERC/CIP requirements, which are enforced using audits, trigger fines that could put the profitability of private utility companies at risk. “There is an opportunity for integrators to partner with customers and identify how to appropriately meet the requirements within budget and get these projects done,” says Hendrix. Among the audit requirements is a log showing who comes and goes at a facility; access control systems collect that information and provide the needed documentation. Employees are issued cards, and contractors and other visitors are required to be escorted by approved personnel into and out of a site. For frequent visitors and contractors, a credential can be issued. Promoting awareness of such policies and requirements is another factor in CIP compliance.

Download PDF version

Author Profile

Larry Anderson Editor,

An experienced journalist and long-time presence in the US security industry, Larry is's eyes and ears in the fast-changing security marketplace, attending industry and corporate events, interviewing security leaders and contributing original editorial content to the site. He leads SecurityInformed's team of dedicated editorial and content professionals, guiding the "editorial roadmap" to ensure the site provides the most relevant content for security professionals.

In case you missed it

Has The Gap Closed Between Security Fiction And Security Reality?
Has The Gap Closed Between Security Fiction And Security Reality?

Among its many uses and benefits, technology is a handy tool in the fantasy world of movie and television thrillers. We all know the scene: a vital plot point depends on having just the right super-duper gadget to locate a suspect or to get past a locked door. In movies and TV, face recognition is more a super power than a technical function. Video footage can be magically enhanced to provide a perfect image of a license plate number. We have all shaken our heads in disbelief, and yet, our industry’s technical capabilities are improving every day. Are we approaching a day when the “enhanced” view of technology in movies and TV is closer to the truth? We asked this week’s Expert Panel Roundtable: How much has the gap closed between the reality of security system capabilities and what you see on TV (or at the movies)?

BCDVideo Signs OEM Deal With Dell EMC: Positive Impact For Surveillance Storage
BCDVideo Signs OEM Deal With Dell EMC: Positive Impact For Surveillance Storage

In a significant move for the video security market, BCDVideo has announced that it is set to become Dell EMC’s OEM partner in the video surveillance space. For nearly a decade, the Chicago-based company has been known as a key OEM partner of Hewlett Packard Enterprise (HPE), providing storage and networking technology to security integrators on a global scale. This latest partnership will allow BCDVideo to take their offerings to the next level. BCDVideo Vice President Tom Larson spoke to to discuss the reasoning behind the deal, and how the program will benefit partners, integrators, and end-users alike. Expanding BCDVideo's Product Offering For BCDVideo, the HPE OEM program has been widely acknowledged as a success, allowing the company to leverage a globally recognized brand and provide high-quality, reliable solutions across video networking and access control. Nevertheless, explains Larson, HPE server solutions are primarily suited to large-scale enterprise projects, and are therefore unable to accommodate for the growth in small- and medium-sized surveillance applications. The global collaboration with Dell EMC will allow BCDVideo to open up a broader product offering, building on success in the larger enterprise market to offer tailored solutions to SMEs. Our aim is to look at all best of breed technology to serve the video surveillance marketplace, and that means multiple partnerships” Support For Integrators By leveraging Dell EMC’s sophisticated digital storage platforms, BCDVideo will now be able to offer a more cost-effective solution to integrators, without sacrificing the resilience and IT-level service that BCDVideo is known for. With access to Dell EMC’s expansive global sales and technical teams, the company hopes to expand its reach, all-the-while providing partners with around-the-clock technical support and a five-year on-site warranty. Customers should be reassured that BCDVideo will continue to offer HPE platforms, service, and support. “Our aim is to look at all best-of-breed technology to serve the video surveillance marketplace, and that means multiple partnerships,” says Larson.  “The addition of Dell EMC to our portfolio is a major win for BCDVideo, for Dell EMC, and for our integrators.” The global collaboration with Dell EMC will allow BCDVideo to open up a broader product offering Meeting Surveillance Market Demands At the technology level, assures Larson, Dell EMC’s server offering is well suited to handle the increasing video resolution and growing camera count demanded by the surveillance industry. At the larger end of the spectrum, the company’s Isilon Scale-Out NAS solution can handle tens of petabytes of data, making it ideal for large-scale security applications such as city-wide surveillance and airport security. Dell EMC storage solutions are already proving successful at major international airports including Dubai and Abu Dhabi, each with a camera count in the 1000s.Dell EMC and BCDVideo together are ensuring our customers get the right solutions designed for the surveillance market” For Dell EMC, the new partnership means the ability to expand on this success in the enterprise market, leveraging BCDVideo’s surveillance expertise and high-level customer service to offer tailored solutions for lower-volume applications. Since its inception, BCDVideo has differentiated itself in the security space by providing a high level of IT service to integrators making the transition to IP systems. By combining resources, the partners will be able to service VMS and analytics companies, software vendors, and access control providers, as well as traditional business integrators. Ken Mills, General Manager Dell EMC Surveillance, explains: “Surveillance storage is not just about capacity, it is also about performance and reliability. Dell EMC and BCDVideo together are ensuring our customers get the right solutions designed for the surveillance market.” Accomodating For Growth BCDVideo is well placed to accommodate this anticipated growth. Last year, the company opened a new 51,000-square-foot global headquarters in Illinois, home to 90 separate stations within their Innovation Center where each system is customised according to integrator needs. The new facility allows for expanding business with new and existing partners in the security market.

How To Prepare For Active Shooter Incidents | Infographic
How To Prepare For Active Shooter Incidents | Infographic

This Active Shooter infographic summarises information about trends among active shooter incidents, and outlines how an organization can develop a plan before tragedy occurs, including:   Statistics on the numbers and types of recent active shooter incidents. A profile of common traits among active shooters. How to prepare beforehand, and what to do when the police arrive. How organizational planning ensures maximum preparedness. Pre-attack indicators to look for. Be sure to share this information with coworkers and managers. Awareness is key to preventing active shooter incidents, and to minimising their tragic consequences. When sharing this infographic on your website, please include attribution to More resources for active shooter preparedness: How hospitals can prepare for active shooter attacks Six steps to survive a mass shooting Technologies to manage emergency lockdowns  How robots can check for active shooters  Background checks to minimise insider threats Gunfire detection technologies for hospitals, retail and office buildings 21 ways to prevent workplace violence in your organisation Non-invasive security strategies for public spaces