New York Gov. Kathy Hochul signed legislation to create cybersecurity protections for the state's energy grid.
The legislation (designated A.3904B/S.5579A) will require utilities to prepare for cyberattacks in their annual emergency response plans, just as they would for storm or other hazards. The new protections also give the Public Service Commission enhanced auditing powers to ensure that critical infrastructure and customer data is secured.
The governor’s office said this action is taken during a global surge in cyberattacks against critical infrastructure and will ensure that New York's power grid remains reliable and secure.
"The first modern electric grid was built in New York State, and 140 years later, we continue to take nation-leading steps to keep the lights on for all New Yorkers by strengthening our cybersecurity," Hochul said. "We understand that as the financial capital of the world and a leader in clean energy, New York is a target for hackers. This critical legislation will help protect millions of New Yorkers who depend on reliable electric service and ensure a smooth transition to clean energy."
Legislation A.3904B/S.5579A, which passed unanimously in both the New York State Assembly and New York State Senate, strengthens protections for the local distribution system and requires utilities to secure critical infrastructure against cyberattacks.
This action comes following guidance from President Joe Biden requesting that state's set minimum cybersecurity requirements for critical infrastructure, including the energy system. In several instances over the past decade, cyberattacks have proven capable of shutting down electric grids.