Standards Development Update
|
|
- Debra Cain
- 5 years ago
- Views:
Transcription
1 Standards Development Update Steven Noess, Director of Standards Development FRCC Reliability Performance Industry Outreach Workshop September 20, 2017 Supply Chain Risk Management 1
2 Cyber Security Supply Chain Standard Background FERC issued Order No. 829 on July 21, 2016 Standard must be filed by September 2017 Status Final ballot ended July 20, 2017 o CIP % o CIP % o CIP % NERC Board of Trustees o Solicited Policy Input July 2017 o Adopted by Board of Trustees at August 2017 meeting o Concurrently adopted six supporting and related resolutions FERC filing deadline of September 27, Focus High and medium impact BES Cyber Systems No requirements for low impact BES Cyber Systems NERC committed to addressing risks appropriately Identify best practices Develop guidance resources Support common understanding of compliance obligations 4 2
3 Policy Input How should NERC support effective implementation? How should NERC evaluate effectiveness of the standards going forward? What risks and related issues should NERC study, including risks related to low impact BES Cyber Systems not covered by the standards? Are there actions NERC should take to address additional potential supply chain risks? 5 Policy Input Themes Additional implementation guidance and time for implementation Communication through webinars and post lessons Vendors must be included Consistent audit guidelines Establish expert group for feedback on success Engage Critical Infrastructure Protection Committee (CIPC) Allow implementation time prior to evaluation Use E ISAC to track incidents Participate in cross industry forums 6 3
4 Board Resolution 1 Support Effective and Efficient Implementation: NERC to commence preparations for implementation of the Supply Chain Standards using similar methods during the CIP V5 transition, and regularly report to the Board on those activities. 7 Board Resolution 2 Cyber Security Supply Chain Risk Study: Study the nature and complexity of cyber security supply chain risks, including risks associated with low impact assets not currently subject to the Supply Chain Standards, and develop recommendations for follow up actions that will best address any issues identified. (Interim report 12 months after adoption of the resolutions and a follow up final report 18 months after adoption). 8 4
5 Board Resolution 3 Communicate Supply Chain Risks to Industry: Communicate supply chain risk developments and risks to industry and in connection with the Cyber Security Supply Chain Risk Study. 9 Board Resolutions 4 and 5 Forum White Papers: The Board requests the North American Transmission Forum and the North American Generation Forum (the Forums ) to develop (and distribute, as permissible) white papers to address best and leading practices in supply chain management, as described in the resolution. Association White Papers: The Board requests the National Rural Electric Cooperative Association and the American Public Power Association (the Associations ) to develop (and distribute, as permissible) white papers to address best and leading practices in supply chain management, as described in the resolution. 10 5
6 Board Resolution 6 Evaluate Effectiveness: Collaborating with NERC technical committees and other experts, evaluate the effectiveness of the Supply Chain Standards, as described in the resolution, and report to the Board. 11 Activities in Support Industry advisory group to support deployment ERO Enterprise auditor training Industry webinars and workshops Vendor outreach on controls Engage CIPC Form vendor/industry working groups on supply chain risks Review supply chain risk practices in other industries and communicate effective strategies Ensure BES supply chain risks are addressed by product manufacturing standards Provide latest government intelligence to industry Enlist national laboratories to test legacy systems 12 6
7 13 Technical Rationale Guidelines and Technical Basis 7
8 Background of Guidelines and Technical Basis Initially designed to support results based standards Contained an information only disclaimer Incorporated into standard development template Disclaimer paragraph was omitted Initiatives since inception Reliability Standard Audit Worksheets (RSAW) Risk based Compliance Monitoring and Enforcement Program (CMEP) Compliance Guidance Confusion around application and status, in conjunction with new initiatives 15 Purpose Provides drafting teams a mechanism to: Explain the technical basis for Reliability Standard Provide technical guidance to help support effective application To further clarify Guidelines and Technical Basis NERC staff and Standards Committee (SC) leadership coordinate Captured in Task 3 in SC Strategic Plan 16 8
9 Summary of Technical Rationale Transition existing Guidelines and Technical Basis to Technical Rationale A separate document to explain technical basis Focus on understanding technology and technical requirements No embedded compliance approaches or compliance guidance Appropriate use of NERC Compliance Guidance Policy NERC staff review for conformance 17 Work Plan Develop Technical Rationale document complete SC endorsement complete Presentation to Board of Trustees and Member Representatives Committee complete Implementation Develop ERO guidance on existing Guidelines and Technical Basis and future Technical Rationale (e.g. CMEP Practice Guide) Q3 Review existing Guidelines and Technical Basis for possible Compliance Guidance language Q4 Transition existing Guidelines and Technical Basis to Technical Rationale 2017 Q4 to 2018 Q3 18 9
10 Webinar NERC staff and SC members collaborating on initial implementation Planning additional webinar on Technical Rationale implementation in Q Relevant Documents Mandatory and enforceable components of Reliability Standards Applicability Requirements Effective dates Regulatory documents (mandatory and enforceable) ERO filing for approval Regulatory order in applicable jurisdiction Technical information (not mandatory and enforceable) Technical rationale (Guidelines and Technical basis) Whitepapers Reliability guidelines 20 10
11 Relevant Documents Audit and compliance (not mandatory and enforceable) RSAW Compliance Guidance o Implementation Guidance o CMEP Practice Guides
12 Current Standards Development Activities Project Geomagnetic Disturbance Purpose: Modifying TPL to address directives from Order No. 830 including: Modify the benchmark GMD event definition used for GMD Vulnerability Assessments; Make related modifications to requirements pertaining to transformer thermal impact assessments; Require collection of GMD related data. NERC is directed to make data available; and Require deadlines for Corrective Action Plans (CAPs) and GMD mitigating actions Status: Passed initial ballot; will be posting for final ballot in October Developer contact information: Scott Barfield McGinnis, Scott.Barfield@nerc.net 24 12
13 Project Establish and Communicate System Operating Limits Purpose: Make changes to address recommendations from Project Periodic Review of System Operating Limits: IROLs are now being studied by the technical committees through the Method for Interpreting IROLs Task Force (MEITF) Replacing FAC with a new FAC to address SOL methodology process and coordination Updating FAC 011 and FAC 014 Balloting a new definition for System Voltage Limit Seeking informal comment on revised System Operating Limit and new SOL Exceedance definitions Status: Posting for initial ballot at the end of September Developer contact information: Darrel Richardson, darrel.richardson@nerc.net 25 Project Single Points of Failure Purpose: Make changes to TPL to address recommendations from System Protection and Control Subcommittee and System Analysis and Modeling Subcommittee assessment of single points of failure; update references to the MOD standards, and address Order No. 786 directives: Address six month threshold for planned outages Address spare equipment strategy for stability analyses Status: Posted for initial ballot September 8, 2017 Developer contact information: Latrice Harkness, latrice.harkness@nerc.net 26 13
14 Issue Area Source Status LERC definition Transient Devices for Low Impact (TCA) Shared BES Cyber Systems in CIP a Communication between BES Control Centers Transmission Owner (TO) Control Centers performing the function of a Transmission Operator (TOP) Project Modifications to CIP Standards Order 822 Order 822 Energy Sec RFI Order 822 V5TAG Completed Completed Completed CIP Formal Comment and Initial Ballot concluded on 9/11/2017. SDT preparing for Additional Ballot CIP currently posted for Formal Comment and Initial Ballot, closing 10/30/17 Virtualization in the CIP Environment V5TAG Informal Posting ended 4/11/2017; second Informal Posting anticipated fall 2017 CIP Exceptional Circumstances SAR Informal Posting ended 3/13/2017, Comments under consideration Definitions and Concepts V5TAG Being addressed in other project areas 27 Project Modifications to CIP Standards Meeting/Call Schedule Reserved call times Fridays 11:00 a.m. 1:00 p.m. Eastern Refer to the NERC Calendar of Events for other calls and in person meetings Contact Information NERC Standards Development staff, Katherine Street and Mat Bunch katherine.street@nerc.net Telephone: mat.bunch@nerc.net Telephone:
15 Project Modifications to PRC Purpose: Address issues on Generator Relay Loadability including: Provide alternative loadability Options for Table 1 specific to dispersed power producing resources; Address the inclusion or exclusion of the 50 element (i.e., instantaneous); Review Table 1 for proper application where there is more than one application for the available Option(s), Provide alternative or additional Options for Table 1 specific to relay applications that are directional toward the Transmission system where the interconnecting transmission line impedance may be a factor in determining the maximum Reactive Power output of the generators and associated relay settings; Provide an alternative to the term pickup setting in Table 1 the will better align with the intent of the standard for relays to not trip Status: Passed initial ballot Developer contact information: Scott Barfield McGinnis, Scott.Barfield@nerc.net 29 Purpose: Revise existing BAL to address: Project Modifications to BAL Inconsistencies in calculation of IFROs due to interconnection Frequency Response performance changes of Point C and/or Value B; Eastern Interconnection Resource Contingency Protection Criteria; Frequency nadir point limitations (currently limited to t0 to t+12), Clarification of language in Attachment A, i.e. related to Frequency Response Reserve Sharing Groups (FRSG) and the timeline for Frequency Response and Frequency Bias Setting activities; BAL FRS Forms enhancements that include, but may not be limited to, the ability to collect and submit FRSG performance data. Status: SAR teams being formed Developer contact information: Darrel Richardson, darrel.richardson@nerc.net 30 15
16 Project Periodic Review of INT Standards The purpose of this project is to conduct a periodic review of a subset of the Interchange (INT) Reliability Standards: INT ; INT 006 4; INT ; and INT Provide a comprehensive review that results in a recommendation that the Reliability Standard should be: Reaffirmed; Revised; or Withdrawn. 31 Project Periodic Review of INT Standards First public meeting was conducted August 23 24, 2017 at NERC offices in Atlanta, GA Second public meeting will be conducted September 26 27, 2017 at Xcel Energy in Golden, CO Contact Laura Anderson, Standards Developer laura.anderson@nerc.net Telephone:
17 Project NUC Periodic Review Purpose Conduct a periodic review of one Nuclear Plant Interface Coordination (NUC) Reliability Standard NUC Provide a comprehensive review that results in a recommendation that the Reliability Standard should be: o Reaffirmed; o Revised; or o Withdrawn. 33 Project NUC Periodic Review First public meeting was conducted September 12 13, 2017 at NERC offices in Washington, DC Conference call scheduled for October 17 to continue working on initial recommendations Contact Mat Bunch, Standards Developer mat.bunch@nerc.net Telephone:
18 Project Modifications to BAL Purpose: Address FERC directives to modify BAL 002 2, Requirement R1, to require Balancing Authorities and Reserve Sharing Groups: To notify the reliability coordinator of the conditions set forth in Requirement R1, Part preventing it from complying with the 15 minute ACE recovery period; and To provide the reliability coordinator with its ACE recovery plan, including a target recovery time Status: SAR teams being formed Developer contact information: Darrel Richardson, darrel.richardson@nerc.net 35 Project Standards Alignment with Registration Aligns standards with retirement of Purchasing Selling Entity (PSE), Interchange Authority (IA), and Load Serving Entity (LSE) functions. Includes three categories: Modifications to existing standards where the removal of the retired function may need replacement by another function o Reliability Standard MOD specifies certain data from LSEs that may need to be provided by other functional entities going forward Modifications where the applicable entity and references may be removed: o Standards are redlined and posted for industry comment and ballot o Edits to remove deregistered functional entities and their applicable requirements/references PRC 005 will be updated to replace DP with Underfrequency Load Shedding (UFLS) DP Addressing alignment through the periodic review process: o INT 004 and NUC
19 Project Standards Alignment with Registration SAR Drafting Team Recommendation to be presented to the Standards Committee (SC) at its October 2017 meeting SAR for Standards Alignment with Registration posted for comment 08/01/ /30/2017 SAR for MOD posted for comment 08/01/ /30/2017 Contact Laura Anderson, Standards Developer laura.anderson@nerc.net Telephone: Project Modifications to Personnel Performance, Training, and Qualifications Purpose: Make modifications to the PER standards based on the Project 2016 EPR 01 PER team recommendations: PER requires a clarifying footnote to 1) understand connection between the Standard and Program Manual and 2) certifications references under PER are from NERC System Operator Certification program; and Retire PER Status: Meeting to finalize SAR at the end of September Developer contact information: Darrel Richardson, darrel.richardson@nerc.net 38 19
20 39 20
New Brunswick 2018 Annual Implementation Plan Version 1
New Brunswick Energy and Utilities Board Reliability Standards, Compliance and Enforcement Program New Brunswick 2018 Annual Implementation Plan Version 1 December 28, 2017 Table of Contents Version History...
More informationPhysical Security Reliability Standard Implementation
Physical Security Reliability Standard Implementation Attachment 4b Action Information Background On March 7, 2014, the Commission issued an order directing NERC to submit for approval, within 90 days,
More informationERO Enterprise Strategic Planning Redesign
ERO Enterprise Strategic Planning Redesign Mark Lauby, Senior Vice President and Chief Reliability Officer Member Representatives Committee Meeting February 10, 2016 Strategic Planning Redesign Current
More informationReliability Standards Development Plan
Reliability Standards Development Plan Steven Noess, Director of Standards Development Standards Oversight and Technology Committee Meeting November 1, 2016 2017-2019 Reliability Standards Development
More informationStandard Development Timeline
Standard Development Timeline This section is maintained by the drafting team during the development of the standard and will be removed when the standard is adopted by the NERC Board of Trustees (Board).
More informationBritish Columbia Utilities Commission Reliability Standards with Effective Dates adopted in British Columbia
Page 1 of 15 British Columbia Utilities Reliability Standards with s adopted in British Columbia BAL-001-2 Standard Real Power Balancing Control Performance R-14-16 July 1, 2016 BAL-002-1 1 Disturbance
More informationNERC Relay Loadability Standard Reliability Standards Webinar November 23, 2010
Transmission Relay Loadability FERC Order 733 Project 2010-1313 NERC Relay Loadability Standard Reliability Standards Webinar November 23, 2010 Project Overview 2 Standards Involved PRC-023-2 Transmission
More informationStandard Development Timeline
Standard Development Timeline This section is maintained by the drafting team during the development of the standard and will be removed when the standard is adopted by the NERC Board of Trustees (Board).
More informationNERC and Regional Coordination Update. Operating Committee Preston Walker January 9, 2018
NERC and Regional Coordination Update Operating Committee Preston Walker January 9, 2018 Standards Project Action End Date Project 2017-07 Standards Alignment with Registration NERC Standards Under Development
More informationCIP Cyber Security Configuration Change Management and Vulnerability Assessments
Standard Development Timeline This section is maintained by the drafting team during the development of the standard and will be removed when the standard becomes effective. Development Steps Completed
More informationStandards Authorization Request Form
Standards Authorization Request Form When completed, email this form to: sarcomm@nerc.com NERC welcomes suggestions to improve the reliability of the bulk power system through improved reliability standards.
More informationThis section is maintained by the drafting team during the development of the standard and will be removed when the standard becomes effective.
Standard Development Timeline This section is maintained by the drafting team during the development of the standard and will be removed when the standard becomes effective. Development Steps Completed
More informationCritical Infrastructure Protection Version 5
Critical Infrastructure Protection Version 5 Tobias Whitney, Senior CIP Manager, Grid Assurance, NERC Compliance Committee Open Meeting August 9, 2017 Agenda Critical Infrastructure Protection (CIP) Standards
More informationCyber Security Reliability Standards CIP V5 Transition Guidance:
Cyber Security Reliability Standards CIP V5 Transition Guidance: ERO Compliance and Enforcement Activities during the Transition to the CIP Version 5 Reliability Standards To: Regional Entities and Responsible
More informationDisclaimer Executive Summary Introduction Overall Application of Attachment Generation Transmission...
CIP-002-4 Cyber Security Critical Cyber Asset Identification Rationale and Implementation Reference Document September, 2010 Table of Contents TABLE OF CONTENts Disclaimer... 3 Executive Summary... 4 Introduction...
More informationImpacts and Implementation: NERC Reliability Standards, Compliance Initiatives, and Regulatory Activities
Impacts and Implementation: NERC Reliability Standards, Compliance Initiatives, and Regulatory Activities NRECA TechAdvantage March 2014 Patti Metro Manager, Transmission & Reliability Standards NRECA
More informationThis section is maintained by the drafting team during the development of the standard and will be removed when the standard becomes effective.
Standard Development Timeline This section is maintained by the drafting team during the development of the standard and will be removed when the standard becomes effective. Development Steps Completed
More informationProposed Clean and Redline for Version 2 Implementation Plan
Exhibit A Implementation Plans for CIP-002-2 through CIP-009-2 and CIP-002-3 and CIP-009-3 For Generator Owners and Generator Operators of U.S. Nuclear Power Plants Proposed Clean and Redline for Version
More informationCIP Cyber Security Incident Reporting and Response Planning
Standard Development Timeline This section is maintained by the drafting team during the development of the standard and will be removed when the standard becomes effective. Development Steps Completed
More informationThis section is maintained by the drafting team during the development of the standard and will be removed when the standard becomes effective.
Standard Development Timeline This section is maintained by the drafting team during the development of the standard and will be removed when the standard becomes effective. Description of Current Draft
More informationThis draft standard is being posted for an initial comment and ballot. The draft includes modifications to meet the directives of FERC Order No. 791.
Standard Development Timeline This section is maintained by the drafting team during the development of the standard and will be removed when the standard becomes effective. Development Steps Completed
More informationCyber Security Standards Drafting Team Update
Cyber Security Standards Drafting Team Update Michael Assante, VP & Chief Security Officer North American Electric Reliability Corp. February 3, 2008 Overview About NERC Project Background Proposed Modifications
More informationCIP Cyber Security Security Management Controls. Standard Development Timeline
Standard Development Timeline This section is maintained by the drafting team during the development of the standard and will be removed when the standard becomes effective. Development Steps Completed
More informationStandard Development Timeline
Standard Development Timeline This section is maintained by the drafting team during the development of the standard and will be removed when the standard becomes effective. Description of Current Draft
More informationCIP Version 5 Transition. Steven Noess, Director of Compliance Assurance Member Representatives Committee Meeting November 12, 2014
CIP Version 5 Transition Steven Noess, Director of Compliance Assurance Member Representatives Committee Meeting November 12, 2014 Purpose of the Transition Program Transitioning entities confident in
More informationNERC CIP Information Protection
NERC CIP Information Protection Eric Ruskamp Manager, Regulatory Compliance September 13, 2017 1 Agenda NERC History NERC Compliance Overview of Reliability Standards Compliance with Reliability Standards
More informationCIP Cyber Security Configuration Management and Vulnerability Assessments
Standard Development Timeline This section is maintained by the drafting team during the development of the standard and will be removed when the standard becomes effective. Development Steps Completed
More informationProject Retirement of Reliability Standard Requirements
Project 2013-02 Retirement of Reliability Standard Requirements Unofficial Comment Form for Paragraph 81 (P81) Project Retirement of Reliability Standard Requirements This form is provided in a Word format
More informationProposed Convention for Numbering of NERC Reliability Standards Draft September 9, 2004
Proposed Convention for ing of NERC Reliability s Draft September 9, 2004 Introduction The Version 0 Drafting Team proposes to initiate a new convention for numbering NERC reliability standards concurrent
More informationReliability Standards Development Plan
Reliability Standards Development Plan 2012-2014 October 13, 2011 For SC Approval 3353 Peachtree Road NE Suite 600, North Tower Atlanta, GA 30326 404-446-2560 www.nerc.com Table of Contents Table of Contents...ii
More informationStandard CIP 007 3a Cyber Security Systems Security Management
A. Introduction 1. Title: Cyber Security Systems Security Management 2. Number: CIP-007-3a 3. Purpose: Standard CIP-007-3 requires Responsible Entities to define methods, processes, and procedures for
More informationStandard CIP Cyber Security Critical Cyber As s et Identification
A. Introduction 1. Title: Cyber Security Critical Cyber Asset Identification 2. Number: CIP-002-4 3. Purpose: NERC Standards CIP-002-4 through CIP-009-4 provide a cyber security framework for the identification
More informationUnofficial Comment Form 1st Draft of PRC-005-3: Protection System and Automatic Reclosing Maintenance (Project )
Unofficial Comment Form 1st Draft of PRC-005-3: Protection System and Automatic Reclosing Maintenance (Project 2007-17.2) Please DO NOT use this form for submitting comments. Please use the electronic
More informationCritical Cyber Asset Identification Security Management Controls
Implementation Plan Purpose On January 18, 2008, FERC (or Commission ) issued Order. 706 that approved Version 1 of the Critical Infrastructure Protection Reliability Standards, CIP-002-1 through CIP-009-1.
More informationReliability Standard Audit Worksheet 1
Reliability Standard Audit Worksheet 1 PRC-004-3 Protection System Misoperation Identification and Correction This section to be completed by the Compliance Enforcement Authority. Audit ID: Registered
More informationStandard CIP 007 4a Cyber Security Systems Security Management
A. Introduction 1. Title: Cyber Security Systems Security Management 2. Number: CIP-007-4a 3. Purpose: Standard CIP-007-4 requires Responsible Entities to define methods, processes, and procedures for
More informationStandard Development Timeline
CIP-008-6 Incident Reporting and Response Planning Standard Development Timeline This section is maintained by the drafting team during the development of the standard and will be removed when the standard
More informationReliability Standard Audit Worksheet 1
Reliability Standard Audit Worksheet 1 CIP-002-5.1 Cyber Security BES Cyber System Categorization This section to be completed by the Compliance Enforcement Authority. Audit ID: Registered Entity: NCR
More informationCritical Infrastructure Protection Committee Strategic Plan
Critical Infrastructure Protection Committee Strategic Plan 2013-2016 CIPC Executive Committee 5/14/2013 3353 Peachtree Road NE Suite 600, North Tower Atlanta, Georgia 30326 404-446-2560 www.nerc.com Table
More informationCIP Cyber Security Critical Cyber Asset Identification. Rationale and Implementation Reference Document
CIP-002-4 Cyber Security Critical Cyber Asset Identification Rationale and Implementation Reference Document NERC Cyber Security Standards Drafting Team for Order 706 December 2010 This document provides
More informationMeeting- Overview of. Development
NPCC 2008 General Meeting- Standards Program Area- Overview of Regional Standards Development Guy V. Zito Assistant Vice President Standards September 25, 2008 September 25, 2008 1 Standards Program Area
More informationReliability Standard Audit Worksheet 1
Reliability Standard Audit Worksheet 1 CIP-012-1 Cyber Security Communications between Control Centers This section to be completed by the Compliance Enforcement Authority. Audit ID: Registered Entity:
More informationCIP Cyber Security Recovery Plans for BES Cyber Systems
Standard Development Timeline This section is maintained by the drafting team during the development of the standard and will be removed when the standard becomes effective. Development Steps Completed
More informationStandard CIP Cyber Security Critical Cyber As s et Identification
A. Introduction 1. Title: Cyber Security Critical Cyber Asset Identification 2. Number: CIP-002-4 3. Purpose: NERC Standards CIP-002-4 through CIP-009-4 provide a cyber security framework for the identification
More informationStandard Development Timeline
Standard Development Timeline This section is maintained by the drafting team during the development of the standard and will be removed when the standard becomes effective. Description of Current Draft
More informationUnofficial Comment Form Project Modifications to CIP Standards Requirements for Transient Cyber Assets CIP-003-7(i)
Unofficial Comment Form Project 2016-02 Modifications to CIP Standards Requirements for Transient Cyber Assets CIP-003-7(i) Do not use this form for submitting comments. Use the electronic form to submit
More informationQuébec Reliability Standards Compliance Monitoring and Enforcement Program Implementation Plan Annual Implementation Plan
Québec Reliability Standards Compliance Monitoring and Enforcement Program Implementation Plan 2017 Annual Implementation Plan Effective Date: January 1, 2017 Approved by the Régie: December 1, 2016 Table
More informationCIP Cyber Security Personnel & Training
A. Introduction 1. Title: Cyber Security Personnel & Training 2. Number: CIP-004-6 3. Purpose: To minimize the risk against compromise that could lead to misoperation or instability in the Bulk Electric
More informationThe North American Electric Reliability Corporation ( NERC ) hereby submits
March 3, 2011 VIA ELECTRONIC FILING Ms. Erica Hamilton, Commission Secretary British Columbia Utilities Commission Box 250, 900 Howe Street Sixth Floor Vancouver, B.C. V6Z 2N3 Re: North American Electric
More informationImplementation Plan for Version 5 CIP Cyber Security Standards
Implementation Plan for Version 5 CIP Cyber Security Standards April 10September 17, 2012 Note: On September 17, 2012, NERC was alerted that some references in the Initial Performance of Certain Periodic
More informationStandard Development Timeline
Standard Development Timeline This section is maintained by the drafting team during the development of the standard and will be removed when the standard is adopted by the NERC Board of Trustees (Board).
More informationStandard Development Timeline
CIP-002-6 Cyber Security BES Cyber System Categorization Standard Development Timeline This section is maintained by the drafting team during the development of the standard and will be removed when the
More informationA. Introduction 1. Title: 2. Number: 3. Purpose: 4. Applicability: 4.1. Functional Entities: Balancing Authority Distribution Provider
The Background, VRF/VSLs, and Guidelines and Technical Basis Sections have been removed for this informal posting. The Project 2016-02 is seeking comments around the concept of the Requirement/Measure
More informationCritical Infrastructure Protection (CIP) Version 5 Revisions. Standard Drafting Team Update Industry Webinar September 19, 2014
Critical Infrastructure Protection (CIP) Version 5 Revisions Standard Drafting Team Update Industry Webinar September 19, 2014 Administrative Items NERC Antitrust Guidelines It is NERC s policy and practice
More informationCIP Cyber Security Configuration Change Management and Vulnerability Assessments
CIP-010-2 3 Cyber Security Configuration Change Management and Vulnerability Assessments A. Introduction 1. Title: Cyber Security Configuration Change Management and Vulnerability Assessments 2. Number:
More informationprimary Control Center, for the exchange of Real-time data with its Balancing
A. Introduction 1. Title: Reliability Coordination Monitoring and Analysis 2. Number: IRO-002-5 3. Purpose: To provide System Operators with the capabilities necessary to monitor and analyze data needed
More informationStandard INT Dynamic Transfers
Standard INT-004-3.1 Dynamic Transfers A. Introduction 1. Title: Dynamic Transfers 2. Number: INT-004-3.1 3. Purpose: To ensure Dynamic Schedules and Pseudo-Ties are communicated and accounted for appropriately
More informationCyber Security Incident Report
Cyber Security Incident Report Technical Rationale and Justification for Reliability Standard CIP-008-6 January 2019 NERC Report Title Report Date I Table of Contents Preface... iii Introduction... 1 New
More informationCIP Standards Development Overview
CIP Standards Development Overview CSSDTO706 Meeting with FERC Technical Staff July 28, 2011 Objectives Historical Timeline CIP-002-4 CIP-005-4 CIP Version 5 2 Project 2008-06 Overview FERC Order 706 SDT
More informationStandard CIP 005 4a Cyber Security Electronic Security Perimeter(s)
A. Introduction 1. Title: Cyber Security Electronic Security Perimeter(s) 2. Number: CIP-005-4a 3. Purpose: Standard CIP-005-4a requires the identification and protection of the Electronic Security Perimeter(s)
More informationStandard Development Timeline
CIP-002-6 Cyber Security BES Cyber System Categorization Standard Development Timeline This section is maintained by the drafting team during the development of the standard and will be removed when the
More informationStandard Development Timeline
Standard Development Timeline This section is maintained by the drafting team during the development of the standard and will be removed when the standard becomes effective. Description of Current Draft
More informationStandard CIP Cyber Security Security Management Controls
A. Introduction 1. Title: Cyber Security Security Management Controls 2. Number: CIP-003-4 3. Purpose: Standard CIP-003-4 requires that Responsible Entities have minimum security management controls in
More informationConsideration of Issues and Directives Federal Energy Regulatory Commission Order No. 791 January 23, 2015
Federal Energy Regulatory Commission Order No. 791 January 23, 2015 67 and 76 67. For the reasons discussed below, the Commission concludes that the identify, assess, and correct language, as currently
More informationSummary of FERC Order No. 791
Summary of FERC Order No. 791 On November 22, 2013, the Federal Energy Regulatory Commission ( FERC or Commission ) issued Order No. 791 adopting a rule that approved Version 5 of the Critical Infrastructure
More informationProject Modifications to BAL Frequency Response and Frequency Bias Setting. Industry Webinar December 18, 2018
Project 2017-01 Modifications to BAL-003-1.1 Frequency Response and Frequency Bias Setting Industry Webinar December 18, 2018 Administrative Items North American Electric Reliability Corporation (NERC)
More information1. Post for 45-day comment period and pre-ballot review. 7/26/ Conduct initial ballot. 8/30/2010
Standard CIP 011 1 Cyber Security Protection Standard Development Roadmap This section is maintained by the drafting team during the development of the standard and will be removed when the standard becomes
More informationConsideration of Issues and Directives Federal Energy Regulatory Commission Order No. 791 June 2, 2014
Federal Energy Regulatory Commission Order No. 791 June 2, 2014 67 and 76 67. For the reasons discussed below, the Commission concludes that the identify, assess, and correct language, as currently proposed
More informationCIP V5 Updates Midwest Energy Association Electrical Operations Conference
CIP V5 Updates Midwest Energy Association Electrical Operations Conference May 2015 Bob Yates, CISSP, MBA Principal Technical Auditor ReliabilityFirst Corporation Agenda Cyber Security Standards Version
More informationStandard Development Timeline
CIP 003 7 Cyber Security Security Management Controls Standard Development Timeline This section is maintained by the drafting team during the development of the standard and will be removed when the standard
More informationCIP Cyber Security Configuration Change Management and Vulnerability Assessments
CIP-010-2 Cyber Security Configuration Change Management and Vulnerability Assessments A. Introduction 1. Title: Cyber Security Configuration Change Management and Vulnerability Assessments 2. Number:
More informationStandard CIP Cyber Security Incident Reporting and Response Planning
A. Introduction 1. Title: Cyber Security Incident Reporting and Response Planning 2. Number: CIP-008-4 3. Purpose: Standard CIP-008-4 ensures the identification, classification, response, and reporting
More informationIndustry Webinar. Project Single Points of Failure. August 23, 2018
Industry Webinar Project 2015-10 Single Points of Failure August 23, 2018 Agenda Presenters Standard Drafting Team o Chair, Jonathan Hayes, SPP o Vice Chair, Delyn Kilpack, LGE-KU NERC Staff o Latrice
More informationStandard Development Timeline
CIP-003-67(i) - Cyber Security Security Management Controls Standard Development Timeline This section is maintained by the drafting team during the development of the standard and will be removed when
More informationDRAFT Reliability Standard Audit Worksheet 1
DRAFT Reliability Standard Audit Worksheet 1 PRC-025-2 Generator Relay Loadability This section to be completed by the Compliance Enforcement Authority. Audit ID: Registered Entity: NCR Number: Compliance
More informationStandard INT Dynamic Transfers
A. Introduction 1. Title: Dynamic Transfers 2. Number: INT-004-3 3. Purpose: To ensure Dynamic Schedules and Pseudo-Ties are communicated and accounted for appropriately in congestion management procedures.
More informationStandard CIP Cyber Security Systems Security Management
A. Introduction 1. Title: Cyber Security Systems Security Management 2. Number: CIP-007-4 3. Purpose: Standard CIP-007-4 requires Responsible Entities to define methods, processes, and procedures for securing
More informationReliability Standard Audit Worksheet 1
Reliability Standard Audit Worksheet 1 PRC-004-3 Protection System Misoperation Identification and Correction This section to be completed by the Compliance Enforcement Authority. Audit ID: Registered
More informationCIP Cyber Security Recovery Plans for BES Cyber Systems
A. Introduction 1. Title: Cyber Security Recovery Plans for BES Cyber Systems 2. Number: CIP-009-5 3. Purpose: To recover reliability functions performed by BES Cyber Systems by specifying recovery plan
More informationFERC Reliability Technical Conference Panel III: ERO Performance and Initiatives ESCC and the ES-ISAC
: ERO Performance and Initiatives June 4, 2015 Chairman Bay, Commissioners, and fellow panelists, I appreciate the opportunity to address the topics identified for the third panel of today s important
More informationStandards. Mark Lauby, Vice President and Director of Standards Board of Trustees Meeting November 7, 2013
Standards Mark Lauby, Vice President and Director of Standards Board of Trustees Meeting November 7, 2013 Geomagnetic Disturbance Operations EOP-010-1 Reliability benefits Enhance operating response to
More informationStandard CIP Cyber Security Electronic Security Perimeter(s)
A. Introduction 1. Title: Cyber Security Electronic Security Perimeter(s) 2. Number: CIP-005-2 3. Purpose: Standard CIP-005-2 requires the identification and protection of the Electronic Security Perimeter(s)
More informationCIP Cyber Security Recovery Plans for BES Cyber Systems
A. Introduction 1. Title: Cyber Security Recovery Plans for BES Cyber Systems 2. Number: CIP-009-6 3. Purpose: To recover reliability functions performed by BES Cyber Systems by specifying recovery plan
More informationCyber Security Supply Chain Risk Management
Cyber Security Supply Chain Risk Management JoAnn Murphy, SDT Vice Chair, PJM Interconnection May 31, 2017 FERC Order No. 829 [the Commission directs] that NERC, pursuant to section 215(d)(5) of the FPA,
More informationStandard CIP-006-3c Cyber Security Physical Security
A. Introduction 1. Title: Cyber Security Physical Security of Critical Cyber Assets 2. Number: CIP-006-3c 3. Purpose: Standard CIP-006-3 is intended to ensure the implementation of a physical security
More informationCIP Cyber Security Configuration Change Management and Vulnerability Assessments
CIP 010 1 Cyber Security Configuration Change Management and Vulnerability Assessments A. Introduction 1. Title: Cyber Security Configuration Change Management and Vulnerability Assessments 2. Number:
More informationProject Cyber Security - Order No. 791 Identify, Assess, and Correct; Low Impact; Transient Devices; and Communication Networks Directives
Project 2014-02 - Cyber Security - Order No. 791 Identify, Assess, and Correct; Low Impact; Transient Devices; and Communication Networks Directives Violation Risk Factor and Justifications The tables
More informationCompliance Enforcement Initiative
Compliance Enforcement Initiative Filing and Status Update November 2, 2011 Rebecca Michael Status of the Filings NERC filed several components of the Compliance Enforcement Initiative on September 30,
More informationCIP Cyber Security Systems Security Management
A. Introduction 1. Title: Cyber Security System Security Management 2. Number: CIP-007-5 3. Purpose: To manage system security by specifying select technical, operational, and procedural requirements in
More informationDraft CIP Standards Version 5
Draft CIP Standards Version 5 Technical Webinar Part 1 Project 2008-06 Cyber Security Order 706 Standards Drafting Team November 15, 2011 Agenda Opening Remarks John Lim, Consolidated Edison, Chair V5
More informationAdditional 45-Day Comment Period September Final Ballot is Conducted October/November Board of Trustees (Board) Adoption November 2014
Standard Development Timeline This section is maintained by the drafting team during the development of the standard and will be removed when the standard becomes effective. Development Steps Completed
More informationMember Representatives Committee Meeting
Member Representatives Committee Meeting August 13, 2014 1:15 p.m. 5:15 p.m. Pacific The Westin Bayshore, Vancouver 1601 Bayshore Drive Vancouver, BC V6G 2V4 Canada Opening Remarks by MRC Chair Consent
More informationUnofficial Comment Form
Generator Requirements at the Transmission Interface (Project 2010-07) Please DO NOT use this form to submit comments. Please use the electronic comment form to submit comments on the first formal posting
More informationStandard CIP 004 3a Cyber Security Personnel and Training
A. Introduction 1. Title: Cyber Security Personnel & Training 2. Number: CIP-004-3a 3. Purpose: Standard CIP-004-3 requires that personnel having authorized cyber or authorized unescorted physical access
More informationCIP Cyber Security Personnel & Training
A. Introduction 1. Title: Cyber Security Personnel & Training 2. Number: CIP-004-5.1 3. Purpose: To minimize the risk against compromise that could lead to misoperation or instability in the BES from individuals
More informationA. Introduction. B. Requirements and Measures
A. Introduction 1. Title: Communications 2. Number: COM-001-3 3. Purpose: To establish Communication capabilities necessary to maintain reliability. 4. Applicability: 4.1. Functional Entities: 4.1.1. Transmission
More informationStandard CIP 005 2a Cyber Security Electronic Security Perimeter(s)
A. Introduction 1. Title: Cyber Security Electronic Security Perimeter(s) 2. Number: CIP-005-2a 3. Purpose: Standard CIP-005-2 requires the identification and protection of the Electronic Security Perimeter(s)
More informationStandards Authorization Request Form
Standards Authorization Request Form When completed, email this form to: sarcomm@nerc.com NERC welcomes suggestions to improve the reliability of the bulk power system through improved reliability standards.
More informationNERC and Regional Coordination Update
NERC and Regional Coordination Update Mark Kuras Sr. Lead Engineer, NERC and Regional Coordination Planning Committee April 7, 2016 NERC Standards Under Development Standards Project Activity Due Date
More informationCCC Compliance Guidance Task Force. Patti Metro, Manager, Transmission & Reliability Standards, NRECA Compliance Committee May 4, 2016
CCC Compliance Guidance Task Force Patti Metro, Manager, Transmission & Reliability Standards, NRECA Compliance Committee May 4, 2016 Key CCC Compliance Guidance Task Force Deliverables Developed procedure
More information