Jagjeet SaranJun 9, 2025 07:21 IST First published on: Jun 9, 2025 at 07:21 ISTShareAmid heightened Indo-Pak tensions, a Pakistani outlet claimed cyberattacks had knocked out 70 per cent of India’s electricity. The false report exposed a very real anxiety: What happens when energy infrastructure becomes a frontline in cyber warfare?For years, the renewable energy sector has diligently optimised turbine efficiency, improved grid integration and focused on speedy deployment. These remain essential. However, an equally pressing threat looms quietly in the background: Cybersecurity and the pace of maximum value addition and localisation in manufacturing.AdvertisementUnlike finance or defence sectors, where digital safeguards have long been entrenched, robust cybersecurity measures are only now being introduced into India’s renewable energy framework. And it’s about time. A compromised SCADA (Supervisory Control and Data Acquisition) system or remote-access breach could disable a wind farm — or multiple sites — in mere seconds.As India pushes towards achieving 500 GW of non-fossil-based electric installed capacity by 2030, including an ambitious target of over 100 GW from wind, the true challenge goes beyond just scaling up. It lies in securing what we install and how it is manufactured.The proposed amendment requires all operational wind turbine data to be stored within Indian territory. Foreign entities will no longer be allowed to remotely access or control Indian wind farms, a clear attempt to eliminate vulnerabilities to external cyber threats. More importantly, Original Equipment Manufacturers (OEMs) will be required to establish R&D facilities in India, signalling a decisive shift from passive assembly to active domestic innovation.AdvertisementThis aligns with NITI Aayog’s 2024 roadmap, emphasising localisation of both hardware and control systems. Given the various global incidents where cyberattacks have crippled energy grids, India’s push for digital self-reliance isn’t just necessary — it’s urgent.Mandating local R&D isn’t just about job creation or investment; it’s about creating wind turbine technology designed for India’s grid, climate, and challenges. India — not China or Europe — must become the epicentre for wind turbine innovation and manufacturing.However, strong policy intent must translate into effective execution, and here the amendment stumbles. Firstly, there is a greater need to build capacity for enforcement. Without a concrete monitoring mechanism, these rules risk becoming paper mandates.Secondly, the amendment needs to articulate India-specific design adaptation clearly. Renewable energy projects here face extreme operating conditions — temperatures exceeding 45°C, saline coastal air, monsoon deluges, and erratic grid voltages. Yet, there is no mandate for in-country prototype testing or climate-resilience validation before inclusion in the RLMMs (Revised List of Models & Manufacturers). This oversight risks importing turbines built for European conditions that buckle under India’s punishing climate.Third, the policy skirts the need for embedded systems security. Today, power converters used in wind turbines and solar inverters in solar projects are effectively software-defined assets. They depend on SCADA systems, PLCs, and firmware that may be compromised — often subtly and invisibly. Without mandatory audits of software stacks and hardware backdoors, especially from OEMs in adversarial jurisdictions, India’s wind and solar assets remain vulnerable.most readTo operate in India, vendors/OEMs must obtain certification and clearance from Indian authorities and adhere to Government of India (GOI) regulations. These regulations should include provisions for force majeure situations, where vendor/OEM-supplied equipment may fail to receive support and patches, potentially leading to significant security breaches and national security risks. This ensures that even in times of geopolitical uncertainty, India’s energy infrastructure remains operable, supported, and secure.Additionally, existing regulatory frameworks — like the Central Electricity Authority’s temperature thresholds or the National Institute of Wind Energy’s certification protocols — are treated as optional references, not core requirements. This disconnect must be addressed if we want turbines that are not just “Made in India” but truly Engineered for India.The writer is a Partner at Dalberg Advisors, where he leads climate-related projects in Asia Pacific and globally