GE has been working with power generation environments for more than 70 years, and we’re ready to help secure the future. We know these environments, understand where they may be vulnerable, and can identify how they can be secured.
Increased connectivity—including the increasing significance of the Industrial Internet of Things (IoT), supply chains, customers, and operations—brings new operational cybersecurity risks and threats that demand attention. The critical infrastructure sectors that GE Gas Power’s products support are subject to an ever-changing cyber threat landscape. As such, GE Gas Power continuously integrates end-to-end cybersecurity to help ensure integrity throughout the product lifecycle.
GE Gas Power has developed a product security program based on industry-leading standards, such as IEC 62443, to support the engineering and configuration of secure products across people, process, and technology. Our advanced solutions and modular offerings help customers quickly apply the solutions they need, when they need them. With our team’s expertise and reliance on best practices, we can help customers improve security, resilience, and compliance—so they can continue to power the future.
GE Gas Power has established a product security program driven by and tied to the NIST Framework for Improving Critical Infrastructure Cybersecurity (Version 1.1) and incorporates other leading industry practices, including NERC CIP, ISO 27001/2, IEC 62443, and NIS. To accomplish this, GE Gas Power has established key areas of a product security program from a programmatic level, including, but not limited to, designating Product Security Leads (PSL), a defined product security program framework, a well-structured governance model, and product-level security controls (e.g., remote access, access management, logging and monitoring).
GE Gas Power’s products operate in a highly dynamic operating environment which is marked by threats that are constantly changing and evolving. As such, it is critical to maintain product security throughout the product lifecycle of marketed products, including components sourced from third party suppliers.
Our security advisories for GE products help let our customers know about technical improvements, maintenance practices, or safety concerns regarding GE supplied equipment.
We enable you to implement proven, pre-integrated solutions, and patches. We can assist with ongoing efforts like maintenance, patching, and hardening—so your team can focus on plant operations.
We can deliver proven products and proactive, expert services that help your organization prevent issues, prolong system usage, and enhance the lifecycle on your investments.
We can help your organization strengthen its safeguards, so you can reduce exposure to cyberattacks and more consistently comply with policies and mandates.
We provide an array of services, including site assessments, penetration testing, training, and more.
A comprehensive service delivering the patches you need—in validated, tested, and easy-to-deploy packages.
Security capabilities in a single, pre-integrated platform, enabling teams to establish defense-in-depth controls.
Detect cyberthreats providing unprecedented operational visibility and enhanced cyber-resilience in power generation ICS environments.