Opportunities in Photovoltaic Operation and Maintenance: Engineering Firms vs. Self-Management
May 6, 2025
Photovoltaic Mounting Systems: Fundamentals, Types, and Technical Considerations
May 27, 2025
Amid the energy transition and increasing reliance on renewable sources, Spain has seen a significant rise in the installation of photovoltaic solar plants in recent years. According to data from Red Eléctrica Española, more than 14% of the country’s electricity generation in 2024 came from solar energy, establishing Spain as one of Europe’s leaders in the sector. However, this growth brings new challenges, one of the most critical and least visible being cybersecurity.
As solar plants become more digitised and increasingly connected to smart grids, they are also exposed to cyber threats that can compromise their operation, cause financial losses, or, in the worst-case scenario, affect national energy security.
Digitalisation: Operational Advantage and Weakness
SCADA (Supervisory Control and Data Acquisition) systems allow remote control of solar plants, adjustment of operating parameters, fault detection, and production optimisation. These systems, along with IoT sensors, artificial intelligence, and communication networks, form the backbone of modern operation and maintenance.
However, this interconnection expands the potential attack surface for cyberattacks. “What used to be solved with a wrench now depends on algorithms and data networks. That means a security failure can disable not just an inverter, but an entire plant or even impact the power grid if it’s integrated on a large scale,” explains Marta González, head of cybersecurity at a solar O&M company operating in Andalusia and Castilla-La Mancha.
Real Cases and Latent Threats
Although Spain has not yet suffered a high-profile attack on its solar infrastructure, other countries have reported incidents that serve as warnings to the authorities. In the United States, for example, there have been documented attempts to gain unauthorised access to SCADA systems in solar plants through known vulnerabilities in poorly configured industrial routers.
The most common types of threats include:
Ransomware: hijacking of IT systems in exchange for ransom.
DDoS attacks: overloading systems to make them inoperative.
Data manipulation: altering operating parameters to reduce efficiency or cause physical damage.
Identity theft: accessing systems using stolen or poorly protected credentials.
Emerging Regulations and Protective Measures
In this context, both European and national authorities have begun to develop specific regulatory frameworks. The NIS2 Directive, approved by the European Union and coming into force in Spain in October 2024, establishes strict obligations for operators of essential services, including renewable energy plants.
This regulation requires operators to:
Conduct regular risk assessments.
Implement incident management systems.
Establish threat response protocols.
Encrypt sensitive data.
Provide continuous training for personnel.
Additionally, the National Cryptologic Centre (CCN-CERT), under the Spanish National Intelligence Centre (CNI), has published specific guidelines for the energy sector in collaboration with the Institute for Energy Diversification and Saving (IDAE).
“Installing antivirus software is not enough. Cybersecurity requires a comprehensive strategy from the design phase of the plant. We need to consider industrial firewalls, network segmentation, regular updates, and most importantly, training of technical staff,” says Javier López, a consultant specialising in critical infrastructure.
The Role of O&M Companies
The companies responsible for operation and maintenance play a crucial role in implementing these measures. While traditionally focused on technical efficiency and the economic performance of installations, they now must incorporate cybersecurity protocols into their daily routines.
Many companies have begun including cybersecurity in their maintenance contracts, with periodic audits, attack simulations, and intrusion detection systems. There is also a growing demand for hybrid profiles, combining knowledge in solar engineering and IT security.
In regions like Extremadura, with a high concentration of photovoltaic installations, some local business consortia are developing shared digital surveillance and incident response solutions, supported by EU Next Generation funds.
The Future: Resilience and Cooperation
Experts agree that the challenge is not only technical but also organisational and cultural. Collaboration among companies, public administrations, and research centres will be key. Pilot projects such as the one promoted by the Polytechnic University of Madrid and CIEMAT, focused on the cyber-resilience of solar microgrids, aim to anticipate future threats through real-world scenario simulations.
There is also increasing interest in “digital twins” as a tool to test vulnerabilities without risking real installations.
As Marta González puts it: “Solar energy is no longer just about panels under the sun. It’s a living, connected, intelligent system—and therefore vulnerable. Digital security must go hand in hand with traditional technical maintenance.”
In a country where the sun is one of its greatest energy assets, protecting the infrastructures that convert it into electricity must be a strategic priority. Cybersecurity is no longer optional; it is an essential part of modern maintenance. Integrating it from the design stage, training human teams, and fostering cooperation among stakeholders will be key to ensuring that the solar revolution in Spain is not only green but also secure.