Posters
Come meet the poster presenters to ask them questions and discuss their work
We would like to invite you to come and see the posters at our upcoming conference. The posters will showcase a diverse range of research topics, and will give delegates an opportunity to engage with the authors and learn more about their work. Whether you are a seasoned researcher or simply curious about the latest developments in your field, we believe that the posters will offer something of interest to everyone. So please join us at the conference and take advantage of this opportunity to learn and engage with your peers in industry and the academic community.
PO300: Proactive Incident Response for Cyber Security in the Wind Energy Sector
Boim Kim, Consultant, PEAK Wind
Abstract
Cyber threats targeting the wind energy sector are becoming increasingly sophisticated and frequent. Attacks range from phishing campaigns against business information technology (IT) systems to malicious activity aimed at operational technology (OT) components that can disrupt or damage critical control systems. The consequences of a cyber incident in this sector extend far beyond data breaches; operational disruptions, financial losses, and risks to human safety are all real possibilities if organizations are not properly prepared to respond effectively and promptly. To strengthen preparedness, regulations and standards for critical sectors, including energy, mandate strict cyber security practices. As an example, under the EU NIS2 Directive, incident reporting to the authorities is required within 24 hours of becoming aware of an incident, followed by detailed reports at 72 hours and one month, including root cause analysis and descriptions of mitigating measures. While these requirements highlight the importance of a prompt incident response framework, they do not provide organizations with actionable, sector-specific guidance. Being compliant with regulation is not the same as being secure. Each organization must proactively define an incident response (IR) strategy that reflects the complex, distributed nature of wind energy environments, where multiple OT systems and suppliers are involved. This poster introduces an IT strategy tailored for the wind energy sector, building on international best practices such as IEC 63443 (OT security) and ISO/IEC 27035 (incident management). The strategy provides sector-relevant, scenario-informed guidance that goes beyond what current legislation offers. It highlights step-by-step workflows, escalation approaches, and practical measures, such as reporting templates, that organizations can adapt to their own environments. By translating international standards into actionable, sector-specific measures, this poster aims to help wind energy organizations respond effectively to incidents, and confidently meet regulatory requirements, and strengthen cyber security resilience.
No recording available for this poster.
