Power grid cybersecurity under parliamentary lens

The rapid digitalisation of India’s power sector has brought cybersecurity of the national transmission network into sharp policy focus, with the issue now drawing attention in the ongoing Parliament session. As modern power grids increasingly depend on interconnected digital systems, experts have underlined the need for robust cybersecurity frameworks to safeguard uninterrupted electricity supply.

An unstarred question submitted in the Lok Sabha, scheduled for reply on December 18, has sought detailed information from the Ministry of Power on the current state of grid cybersecurity. The query covers identification of substations requiring Next Generation Firewalls (NGFWs), prioritisation of vulnerable locations, cybersecurity audits conducted over the past year, and coordination with national agencies such as CERT-In for real-time monitoring and incident response.

The parliamentary scrutiny comes amid broader modernisation efforts within the power sector. Utilities periodically update procurement strategies to match evolving technical and security requirements. In this context, Power Grid Corporation of India Limited (PGCIL), through an official communication dated August 22, 2025, informed bidders that its earlier tender for the “Procurement of Firewall for Substation” had been annulled. The decision has raised concerns among stakeholders, who argue that immediate upgrades are critical given the growing cyber threat landscape facing critical infrastructure.

Cybersecurity experts note that power utilities worldwide are adopting multi-layered defence mechanisms to counter sophisticated attacks. These include deployment of NGFWs, Security Information and Event Management (SIEM) platforms, intrusion prevention systems, and adherence to international standards such as NERC-CIP and ISO 27001. Enhanced coordination between central utilities, state transmission entities, and national cybersecurity agencies is also viewed as essential.