Securing America’s Critical Infrastructure: Strengthening Compliance with NERC Cybersecurity Standards
Udoka Ngozi Nwizu ()
Journal of Technology and Systems, 2025, vol. 7, issue 2, 33 - 47
Abstract:
Purpose: Critical infrastructure, including energy, transportation, and water systems, is increasingly vulnerable to cyber threats and physical attacks. This paper examines the current state of America’s critical infrastructure security, focusing on the challenges posed by sophisticated cyberattacks, aging infrastructure, and regulatory compliance. The study evaluates the effectiveness of existing security frameworks, including the North American Electric Reliability Corporation (NERC) Critical Infrastructure Protection (CIP) standards, and highlights gaps in their implementation. Methodology: A qualitative methodology is used, incorporating case studies, regulatory reports, and expert analyses to assess risks and propose solutions. Notable incidents, such as the Colonial Pipeline ransomware attack and foreign cyber intrusions, illustrate the urgency of enhancing cybersecurity measures. Findings: The findings reveal that many infrastructures sectors struggle with outdated technology, inadequate funding, and insufficient workforce training, making them susceptible to attacks. Additionally, compliance with security regulations is often reactive rather than proactive, limiting the overall effectiveness of defence mechanisms. Unique Contribution to Theory, Policy and Practice: The study recommends investing in advanced cybersecurity technologies, such as AI-driven threat detection, strengthening public-private partnerships for better intelligence sharing, and modernizing regulatory frameworks to be more adaptive to emerging threats to address these challenges. Additionally, workforce training programs and supply chain security enhancements are crucial for long-term resilience. These insights contribute to the development of more robust policies and practical strategies for securing America’s critical infrastructure against evolving threats.Keywords: Critical Infrastructure Protection, Cybersecurity Resilience, NERC CIP Compliance, Threat Intelligence Sharing, Infrastructure Modernization
Keywords: Critical Infrastructure Protection; Cybersecurity Resilience; NERC CIP Compliance; Threat Intelligence Sharing; Infrastructure Modernization (search for similar items in EconPapers)
Date: 2025
References: Add references at CitEc
Citations:
Downloads: (external link)
https://carijournals.org/journals/article/view/2636/3053 (application/pdf)
Related works:
This item may be available elsewhere in EconPapers: Search for items with the same title.
Export reference: BibTeX
RIS (EndNote, ProCite, RefMan)
HTML/Text
Persistent link: https://EconPapers.repec.org/RePEc:bhx:ojtjts:v:7:y:2025:i:2:p:33-47:id:2636
Access Statistics for this article
More articles in Journal of Technology and Systems from CARI Journals Limited
Bibliographic data for series maintained by Chief Editor ().