The program was attended by specialists from PTC1’s technical department and department of operations, telecommunications, and information technology; Command 86 staff; telecommunications and IT personnel from various transmission teams; the Electrical Testing & Maintenance Team 1; as well as leaders of the Northeast Power Transmission Team 3 and its affiliated substations.

Nguyen Van Tinh, a specialist from the Northeast Power Transmission Team 3, presents the program's content. Photo courtesy of EVNNPT.

The assessment was carried out under a coordination plan between the Northeast Power Transmission Team 3 and Command 86, approved by PTC1, a member of EVN National Power Transmission Corporation (EVNNPT).

During the program, technical teams focused on malware scanning and handling information security risks on the control computer systems of both substations. Assessment activities covered malware detection, vulnerability analysis, penetration testing, and a comprehensive review of the security status of the systems.

With close cooperation from the company’s departments, Command 86, and the Northeast Power Transmission Team 3, the technical teams performed full data backups of all control computers; inspected operating systems, control software, firmware, OTWAN and ITWAN networks, control networks, peripheral devices, and all communication ports such as USB, serial, and Ethernet. All procedures followed information security standards to ensure maximum protection of the control systems.

This information security assessment program was successfully completed, contributing to raising awareness among employees about the growing risks to control systems, such as malware, APT attacks, Internet-based threats, network intrusions, and internal risks including unauthorized access, uncontrolled USB usage, operational errors, and unsafe configurations.

Through hands-on activities, technical staff strengthened their skills in threat analysis, emergency incident response, and rapid reaction to complex situations.

Substation operators coordinate with Command 86 to conduct information security scanning. Photo courtesy of EVNNPT.

Following the program, employees gained valuable experience in reviewing system configurations, conducting network security checks, managing access control, assessing patch update levels, and ensuring the security of endpoint devices.

It also provided an opportunity for EVNNPT units to enhance their coordination in incident response and establish clearer information security procedures such as regular backups, system log monitoring, staff training, and standardized incident-handling processes.

The assessment results form an important foundation for PTC1 to continue improving its control system protection model at substations, aiming for safety, stability, and readiness against cyber threats in the context of digital transformation and increasingly demanding grid operation requirements.

Technicians from PTC1 provide guidance on information security procedures. Photo courtesy of EVNNPT.