Based on extensive research conducted by consultancy firm ECHT, commissioned by the Top Sector Energy Digitalization Program, the Netherlands Enterprise Agency (RVO), and TKI Offshore Energy, the report explores opportunities for more intensive knowledge sharing and collaboration in cybersecurity within the offshore wind sector. Conversations with various stakeholders, such as offshore wind park developers, suppliers, government agencies, and cybersecurity experts, indicate a strong desire for increased cooperation and knowledge exchange regarding cybersecurity in the offshore wind industry.
The new European NIS2 directive, which imposes specific requirements on "providers of essential services," including major offshore wind energy producers, plays a crucial role in this context. This regulation heightens the urgency for sector-wide collaboration in cybersecurity within offshore wind energy.
Conclusions and Recommendations
The key findings and recommendations of the report are as follows:
- Establishment of a Cybersecurity Consultative Structure for Offshore Wind Energy: This proposal focuses on creating a consultative structure or steering group to enhance cybersecurity within the offshore wind sector. This structure would increase protection against cyberattacks and incidents by promoting the coordination of cybersecurity strategies and knowledge sharing.
- Layering and Connectivity in Cybersecurity Collaboration: This recommendation emphasizes the importance of collaboration and coordination among existing forums, such as the Energy ISAC, to prevent fragmentation within the offshore wind sector. It underscores a preference for integration with existing cybersecurity initiatives rather than creating new isolated entities.
- Integration of Cybersecurity Standards in Offshore Wind Energy: It is advised to work with the government to integrate cybersecurity standards through standardization or policy-making, specifically for the offshore wind sector. This can be achieved through tender criteria for new wind parks or by incorporating cybersecurity requirements into permits for offshore wind parks.
In summary, the report highlights the growing awareness and urgency of cybersecurity in the offshore wind sector and advocates for increased collaboration, knowledge sharing, and the integration of cybersecurity measures into policy and practice.
Read the full report.
Read the full report here.