Threat Contain logoTHREATCONTAIN
EnergyGridPoint Energy Services

Protecting Critical Energy Infrastructure from Nation-State Threats

Assets monitored

2,400+

GridPoint Energy Services

THE CHALLENGE

GridPoint Energy Services operates power distribution infrastructure across three states, managing ICS/SCADA systems that control substations, distribution automation, and generation assets serving 800,000 customers. A classified threat briefing from the Department of Energy warned of active nation-state campaigns targeting energy sector OT systems using techniques similar to those used in the Ukraine power grid attacks. Their existing security was limited to perimeter firewalls with no visibility into east-west OT traffic, no anomaly detection on industrial protocols like DNP3 and Modbus, and significant gaps in their NERC CIP compliance posture. The board demanded a comprehensive OT security program within nine months.

OUR SOLUTION

Threat Contain deployed our specialized ICS/SCADA security team to conduct a non-intrusive assessment of all operational technology assets across GridPoint's three-state footprint. We implemented passive network monitoring at every substation with protocol-aware anomaly detection for DNP3, Modbus, and IEC 61850 traffic. Our architecture design established secure remote access through jump servers with multi-factor authentication, micro-segmented OT network zones based on the Purdue Model, and centralized security monitoring integrated with their existing energy management system. We built custom detection rules based on known nation-state TTPs targeting energy infrastructure and established a joint IT/OT SOC with unified incident response procedures.

THE RESULTS

  • Complete ICS/SCADA visibility achieved across all substations and generation assets
  • NERC CIP compliance achieved across all applicable standards within the 9-month deadline
  • Detected and blocked two sophisticated probing attempts within the first quarter of operation
  • 99.99% operational uptime maintained throughout the entire security deployment

KEY METRICS

2,400+

Assets monitored

100%

NERC CIP compliance

2

Threats detected Q1

99.99%

Operational uptime

9 months

Deployment timeline

MORE SUCCESS STORIES

Related Case Studies

Financial Services

From Zero to SOC 2 Certified in 90 Days

Apex Financial Group

Time to certification

90 days

Read Case Study
Healthcare

Ransomware Contained in 4 Hours, Business Saved

MedFlow Health Systems

Containment time

4 hours

Read Case Study
Manufacturing

Securing a Manufacturing Supply Chain

Sterling Manufacturing

Vulnerabilities fixed

47

Read Case Study

Facing a Similar Challenge?

Every business we protect started with a single conversation. Let us show you how we can deliver the same caliber of results for your organization.

Contact Us TodayFree Security Assessment