Electric, water, and natural gas utilities face some of the most demanding physical security requirements in any industry. Between NERC CIP-014 compliance for the electric sector, RAM-W risk assessments for water systems, FERC and PHMSA requirements for natural gas facilities, escalating threats against critical infrastructure, and the operational realities of protecting geographically dispersed assets, utility security programs must satisfy both regulators and real-world adversaries.

NERC CIP Physical Security Compliance

NERC CIP-014 requires transmission owners and operators to assess the physical security risks to critical transmission stations and substations, and to develop and implement documented physical security plans. Protective Resources supports utilities through the full compliance lifecycle:

Water Utilities — RAM-W Studies

Water and wastewater utilities protect assets where a security failure is also a public health event. Protective Resources performs RAM-W (Risk Assessment Methodology for Water) studies — the Sandia National Laboratories–developed methodology for water utilities — evaluating threats against treatment plants, wellfields, intakes, storage tanks, pump stations, and SCADA-connected facilities:

Natural Gas — FERC and PHMSA Requirements

Natural gas facilities and transmission systems answer to overlapping federal regulators: FERC for jurisdictional facilities including LNG terminals, and PHMSA for pipeline and LNG plant safety and security under 49 CFR Parts 192 and 193. We support gas operators with:

High-Security Installation Design

Beyond compliance, utilities operate facilities that demand genuinely hardened security: generation plants, control centers, substations, and operations centers. Our consultants design and specify:

Why Independence Matters

Because Protective Resources is not affiliated with any manufacturer or systems integrator, our vulnerability assessments and basis of design documents stand up to regulatory scrutiny as independent, objective work products — a critical distinction when your security plan will be reviewed by auditors.

Discuss Your Utility Security Requirements