Skip to content

Notice: You are viewing a detailed profile of an entity in our US Agency Mapping resource, in which we have compiled all information relevant for the regulation of advanced AI technologies in the US. To see an overview of all entities, return to the entity overview page.

Return to overview

Index

Click on an entity to view its profile page:
Entity Profile

Office of Cybersecurity, Energy Security, and Emergency Response (CESER)

The Office of Cybersecurity, Energy Security, and Emergency Response (CESER) strengthens the security and resilience of U.S. energy infrastructure. It focuses on mitigating cybersecurity, physical, supply chain, and climate-based threats, while assisting with response and restoration. CESER leads national efforts to enhance the preparedness, resiliency, and recovery of U.S. energy systems.

Official website â†—
Leadership

Puesh M. Kumar - Director, Office of Cybersecurity, Energy Security, and Emergency Response

Authority
See office profile for detailed authorities
2025 Budget Request
$200,000,000

Roles and Authority

Authority TypeNameDescription
Presidential Policy DirectivesPPD-8Strengthens security and resilience through preparation for high-risk threats
PPD-21Unifies national efforts to strengthen critical infrastructure; grants CESER authority in these objectives
PPD-41Designates DOE as Sector-Specific Agency for securing critical energy infrastructure
Legislative AuthoritiesEnergy Independence and Security Act of 2007Establishes policy for grid modernization to maintain reliable and secure electricity infrastructure
FAST ActCodifies DOE’s role as Energy Sector Specific Agency for cybersecurity
NDAA FY 2020Established two-year pilot program to identify new energy sector security vulnerabilities
Agency Rules, Frameworks, and StrategiesNational Response FrameworkOutlines DOE’s responsibility for delivery of energy as essential community lifeline
Emergency Support Function #12Grants CESER authority to coordinate and respond in energy sector emergencies
National Cybersecurity StrategyDefines DOE’s role in defending national energy infrastructure
National Infrastructure Protection PlanProvides risk management framework for protecting critical infrastructure
Grid Security Emergency Final RuleEstablishes DOE’s responses to grid security emergencies

Programs

FY 2025 Budget focus

  1. Strengthen U.S. energy sector security and resilience through advanced risk analysis using the analytical capabilities of DOE’s National Laboratories and partnerships with industry and SLTT governments.
  2. Integrate cybersecurity and resilience into the energy sector industrial base through partnerships with manufacturers, technology companies, standards organizations, and academia.
  3. Reduce risks to the electricity, oil, and natural gas systems through threat-informed research, development, and demonstration (RD&D) of next generation tools and technologies providing U.S. energy companies cutting-edge protection, monitoring, detection, response, containment, forensics, and recovery capabilities.
  4. Build security and resiliency capacity across industry and SLTT entities through exercises, training, technical assistance, and workforce development initiatives.
  5. Strengthen emergency preparedness and response capabilities by enhancing CESER’s ability to address all hazards impacting or potentially impacting the energy sector, by reducing impacts at the regional and State levels, in coordination with industry partners.

Divisions

  1. Policy, Preparedness, and Risk Analysis (PPRA): The PPRA division, operating under CESER’s authority as the Sector Risk Management Agency for energy, assesses risks to the U.S. energy sector and leads efforts in policy development, risk management, and capacity building. It serves as the main contact for state, local, tribal, and territorial governments and private sector partners on energy critical infrastructure protection. PPRA works to strengthen energy infrastructure security and resilience through risk assessments, technical assistance, training, and educational resources. The division supports post-disaster recovery, contributes to national security via its Defense Critical Energy Infrastructure program, and represents the Department in cybersecurity and infrastructure resilience discussions.
  2. The Risk Management Tools and Technologies: The RMT division, under CESER, addresses energy sector challenges through RD&D. RMT focuses on cybersecurity, physical, electromagnetic, geomagnetic, and climate-based risks, creating tools to monitor and protect critical energy assets. Its functions include advancing cybersecurity tools, managing supply chain risks, addressing threats to distributed energy resources and electric vehicle infrastructure, and conducting risk assessments. RMT integrates ‘cybersecurity by design’ across DOE’s efforts and coordinates cyber RD&D among offices. The division implements the Cyber Testing for Resilient Industrial Control Systems (CyTRICS) program and the Cyber-Informed Engineering (CIE) strategy.
  3. Response and Restoration: This division leads emergency response efforts, coordinates situational awareness, and manages the deployment of trained responders to disaster sites. They conduct damage assessments, assist with restoration planning, and provide technical expertise during energy emergencies. The team coordinates responses to cybersecurity incidents in the energy sector and leads the Energy Threat Analysis Center (ETAC) to address cyber threats. They maintain regional response teams, provide continuous energy sector monitoring, and operate the EAGLE-I situational awareness platform.

References

https://www.fema.gov/pdf/emergency/nrf/nrf-esf-12.pdf

Index

Click on an entity to view that entity's profile:

Sign up for the Future of Life Institute newsletter

Join 40,000+ others receiving periodic updates on our work and cause areas.
cloudmagnifiercrossarrow-up linkedin facebook pinterest youtube rss twitter instagram facebook-blank rss-blank linkedin-blank pinterest youtube twitter instagram