()
(Fadian, Guam) – The Guam Power Authority (GPA) has been awarded an additional $1,765,986 grant under a subaward agreement facilitated by the American Public Power Association (APPA) in partnership with the U.S. Department of Energy (DOE), through the Industrial Control Systems (ICS) CyberShield (CR15) program. This grant award is designed to help public power utilities strengthen their cybersecurity posture and resilience. The grant award will continue to support cutting-edge cybersecurity technologies, address and overcome key cybersecurity challenges, maximize overall effectiveness of deployed solutions and enhance connectivity across critical infrastructure.
Advancing Cybersecurity for Guam’s Energy Infrastructure
“This grant award demonstrates GPA’s resourcefulness as we work to remain one step ahead of cybersecurity threats, a priority since we implemented our DOE-approved cybersecurity plan in 2014. In partnership with federal authorities, we continue to adapt to increasingly sophisticated threats to safeguard Guam’s critical infrastructure,” said John M. Benavente, P.E., GPA General Manager. Benavente further states, “Our mission is to provide efficient, reliable, and secure power to Guam’s residents and partners and the integration of advanced networking solutions will strengthen our operational capabilities and ability to safeguard critical infrastructure against evolving cyber threats.”
John J. Cruz, Jr., P.E., Assistant General Manager of Engineering and Technical Services (AGMETS) states, “Since 2014, GPA has maintained a proactive cybersecurity program aligned with national standards adopting the NIST Cybersecurity Framework, NIST Special Publication (SP) 800 series guidelines, applicable NERC CIP standards, and others. GPA’s cybersecurity program encompasses information technology (IT) and operations technology (OT) systems, and its core cybersecurity personnel have obtained specialized certifications such as Global Industrial Cyber Security Professional (GICSP).” Cruz further states, “The federal Modern Grid Initiative includes cybersecurity under the definition for resilient grids. ‘A resilient/secure grid withstands physical and cybersecurity attacks without suffering massive blackouts or exorbitant recovery costs. A resilient/secure grid is significantly less vulnerable to natural disasters.’” GPA’s Smart Grid Program is based on the National Modern Grid requirements.
“Since joining APPA’s CR15 program in 2024, GPA has had various technology deployments within the authority with more underway, said Melvyn Kwek, GPA Chief Information Technology Officer (CITO). Kwek further states, “Current ongoing CR15 program advancements at GPA include various upgrades to network infrastructure, Operational Technology (OT) sensor deployments, Security Operation Center (SOC) services, security applications for the OT network and Information sharing.”
Strengthening Collaboration and Innovation
DOE’s partnership with APPA aims to accelerate the adoption of ICS cybersecurity technologies for municipal utilities. By participating in this initiative, GPA continues to demonstrate its leadership in securing energy infrastructure and its dedication to innovation and operational excellence.
GPA has emphasized that cybersecurity is an integral part of its clean energy transition and renewable integration plan. As part of its mission, GPA remains committed to delivering efficient, reliable, and secure power to the people of Guam, ensuring that the island’s energy future is both safe and sustainable.
