Governance & Risk Management , Operational Technology (OT) , Standards, Regulations & Compliance
Overcoming Regulatory Challenges in Renewable Energy
Joseph Couture on Risk Management and Cybersecurity at ØrstedThe fast-moving renewable energy industry demands that executives view cybersecurity as integral to their overall risk management strategies, said Joseph Couture, regional information security officer for the Americas and CISO for the United States at Ørsted. He advises organizations to perform risk assessments and maintain clear communication with executives to ensure the safe delivery of renewable energy.
See Also: Seven Experts on Balancing Digital Transformation and OT Security
Ørsted faces complex regulatory challenges in the renewable energy sector. Couture shared insights into how the company conducts risk assessments and ensures executive buy-in for cybersecurity measures, aligning them with both European and U.S. standards for optimal risk mitigation.
He explained how different regions have varying approaches to energy regulation. "In Europe, we have the NIS 2 standards, a very prescriptive and mature set of rules. In the U.S., NERC CIP covers reliability standards but may not provide the desired level of risk mitigation."
In this video interview with Information Security Media Group at the Cyber Security for Critical Assets USA Summit in Houston, Couture also discussed:
- Ørsted's proactive approach to risk assessments and compliance;
- Aligning cybersecurity with regulatory standards;
- The intricate regulatory landscape of the energy sector.
Couture has 20 years of experience in driving digital security innovation with a fusion of strategy and technology. He has managed IT operations in the U.S., Canada and Central America, across diverse organizations in industries including energy, biotech, hospitality and aquaculture.