Threat Detection and Response with Data Analytics

Large amounts of data related to regional outages, cyber health, distribution sensors, and advanced metering infrastructure (AMI) are gathered from the electrical grid. However, it is difficult to identify cyberattacks and differentiate them from non-cyber incidents. Furthermore, degradation of the grid can come in many forms, including failure of materials, equipment, and information infrastructure resulting from natural or malicious events. Consequences from any of these scenarios can affect the reliability, maintainability, and availability of data required for decision making at numerous levels.