Internal Controls Evaluation (ICE) Tony Eddleman, P.E. NERC Compliance Manager Nebraska Public Power District
|
|
- Joseph McDaniel
- 5 years ago
- Views:
Transcription
1 Internal Controls Evaluation (ICE) Tony Eddleman, P.E. NERC Compliance Manager Nebraska Public Power District
2 2 Topics NPPD Overview Reliability Controls NPPD Internal Control Evaluation (ICE) Sample Controls Summary
3 Nebraska Public Power District 3
4 Nebraska Public Power District 4
5 5 NPPD Sheldon Station Goes Hydrogen One of two boilers at Sheldon Station near Hallam, Nebraska will be converted to use hydrogen as fuel instead of coal. 125 megawatts of electricity Completion of the conversion expected in Monolith produces carbon black and hydrogen from natural gas Carbon Black is a common material found in thousands of products Americans use every day including tires, rubber and plastics, printing inks, and batteries
6 NPPD Sheldon Station Goes Hydrogen 6
7 7 NPPD NERC Registrations Distribution Provider (DP) Generator Owner (GO) Generator Operator (GOP) Resource Planner (RP) Transmission Owner (TO) Transmission Operator (TOP) Transmission Planner (TP) Note: The Southwest Power Pool (SPP) is NPPD s Reliability Coordinator (RC), Balancing Authority (BA) and Planning Authority (PA)
8 8
9 9 Reliability Controls Not Compliance Controls If you haven t started or are having trouble convincing others to start: Don t make controls too hard You are doing many of these today Document what you are doing to make sure you don t forget a requirement or a deadline We use spreadsheets a lot these are okay Start simple keep controls simple! Say to yourself I m going to do what I can do. Don t get overwhelmed!
10 10 Reliability Controls Controls are for us, not MRO Implement controls to ensure you are Reliable Don t focus on implementing controls to reduce regulatory oversight This puts the focus on compliance, not Reliability You don t want a SME thinking a control is just for compliance NPPD has implemented Reliability controls on high and medium risk requirements NPPD internal Inherent Risk Assessment (IRA) performed annually on applicable requirements MRO Performance & Risk Oversight Subcommittee (PROS) The PROS have produced good stuff use it!
11 11 Reliability Controls NPPD Annual Compliance Workshop provides a consistent message to subject matter experts External Compliance Consultant serves as a member of our NERC Compliance Steering Committee Steering Committee consists of senior leadership Discussed controls with several subject matter experts during recent visit Controls are being received well Controls remove anxiety and having to remember to get something done
12 12 MRO 2016 Compliance Audit MRO provided our NPPD Inherent Risk Assessment (IRA) NPPD has 74 NERC Reliability Standards and 325 requirements applicable NPPD IRA: 54 NERC Reliability Standards, including 167 requirements MRO s Internal Control Evaluation (ICE) 17 NERC Reliability Standards, including 36 requirements No CIP requirements MRO sampled ICE Submitted samples to MRO
13 13 Midwest Reliability Organization (MRO) 2016 Compliance Audit - ICE MRO removed 3 requirements from the audit EOP-005-2, R17 System Restoration from Blackstart Resources Generator Operator training FAC-008-3, R6 Facility Ratings PRC-005-6, R5 Protection System Automatic Reclosing and Sudden Pressure Relaying Maintenance Unresolved Maintenance Issues ICE Discussion with MRO Preventative versus Detective Controls
14 14 Internal Controls Evaluation Internal Controls Program Questionnaire Does your organization have a formalized program? If yes, explain the scope Provided: Electric Reliability Compliance Program Provided: NPPD ICP Process Manual Explain the relative independence of compliance responsibilities Explain resources dedicated to compliance program Explain senior management s role Explain the controls in place
15 NPPD Process Manual Attachments 15
16 16 Sample Reliability Controls EOP-005-2, Requirement 17: Each Generator Operator with a Blackstart Resource shall provide a minimum of two hours of training every two calendar years to each of its operating personnel responsible for the startup of its Blackstart Resource generation units and energizing a bus.
17 17 Sample Reliability Controls EOP-005-2, Requirement 17: Each Generator Operator with a Blackstart Resource shall provide a minimum of two hours of training every two calendar years to each of its operating personnel responsible for the startup of its Blackstart Resource generation units and energizing a bus.
18 18 Sample Reliability Controls EOP-005-2, Requirement 17: Each Generator Operator with a Blackstart Resource shall provide a minimum of two hours of training every two calendar years to each of its operating personnel responsible for the startup of its Blackstart Resource generation units and energizing a bus.
19 19 Sample Reliability Controls EOP-005-2, Requirement 17: Each Generator Operator with a Blackstart Resource shall provide a minimum of two hours of training every two calendar years to each of its operating personnel responsible for the startup of its Blackstart Resource generation units and energizing a bus.
20 20 Sample Reliability Controls FAC-008-3, Requirement 6: Each Transmission Owner shall have a documented methodology for determining Facility Ratings (Facility Ratings methodology) of its solely and jointly owned Facilities (except for those generating unit Facilities addressed in R1 and R2)
21 21 Sample Reliability Controls FAC-008-3, Requirement 6: Each Transmission Owner shall have a documented methodology for determining Facility Ratings (Facility Ratings methodology) of its solely and jointly owned Facilities (except for those generating unit Facilities addressed in R1 and R2)
22 22 Sample Reliability Controls FAC-008-3, Requirement 6: Each Transmission Owner shall have a documented methodology for determining Facility Ratings (Facility Ratings methodology) of its solely and jointly owned Facilities (except for those generating unit Facilities addressed in R1 and R2)
23 23 Sample Reliability Controls FAC-008-3, Requirement 6: Each Transmission Owner shall have a documented methodology for determining Facility Ratings (Facility Ratings methodology) of its solely and jointly owned Facilities (except for those generating unit Facilities addressed in R1 and R2)
24 24 Sample Reliability Controls Operationalized Compliance - baked in to operations FAC-008-3, Requirement 6: Each Transmission Owner shall have a documented methodology for determining Facility Ratings (Facility Ratings methodology) of its solely and jointly owned Facilities (except for those generating unit Facilities addressed in R1 and R2) Tom Tierney: A key factor indicator of operationalized compliance is that compliance is incorporated into day-to-day tasks of line personnel, not solely the responsibility of a standalone compliance function
25 25 Sample Reliability Controls FAC-008-3, Requirement 6: Each Transmission Owner shall have a documented methodology for determining Facility Ratings (Facility Ratings methodology) of its solely and jointly owned Facilities (except for those generating unit Facilities addressed in R1 and R2) Note: NPPD has 12 controls on this requirement, but we view this as a high risk.
26 What You Don t Want! 26
27 27 Reliability Controls Keeps small things small Positive compliance posture Base program on individual entity risk assessment No perfect one size fits all Each entity has a different risk tolerance Cost versus benefit Another thought to put controls in perspective Visualize trying to implement a compliance program without the oversight of MRO Understanding the risk of a serious violation then translates to implementing effective controls to mitigate the Reliability risk
28 28 Reliability Controls Bonus Having a Reliability controls mindset will help you review draft NERC Reliability Standards How will I implement this requirement? What Reliability controls will be needed? This may be a good idea and sound good, but how do I prove compliance? Is this a zero tolerance requirement? TOP R13: Each Transmission Operator shall ensure that a Real-time Assessment is performed at least once every 30 minutes. A great time to develop/document controls for new or revised standards is during the implementation meetings
29 Questions 29
New Brunswick 2018 Annual Implementation Plan Version 1
New Brunswick Energy and Utilities Board Reliability Standards, Compliance and Enforcement Program New Brunswick 2018 Annual Implementation Plan Version 1 December 28, 2017 Table of Contents Version History...
More informationDRAFT Reliability Standard Audit Worksheet 1
DRAFT Reliability Standard Audit Worksheet 1 PRC-025-2 Generator Relay Loadability This section to be completed by the Compliance Enforcement Authority. Audit ID: Registered Entity: NCR Number: Compliance
More informationGuidelines for Submitting NERC Reliability Standards Required Documents to the SPP Reliability Coordinator and the SPP Balancing Authority Version 1
Guidelines for Submitting NERC Reliability Standards Required Documents to the SPP Reliability Coordinator and the SPP Balancing Authority Version 1 Revision History Version Effective Date Summary of Revisions
More information2017 MRO Performance Areas and an Update on Inherent Risk Assessments
MIDWEST RELIABILITY ORGANIZATION 2017 MRO Performance Areas and an Update on Inherent Risk Assessments Adam Flink, Risk Assessment and Mitigation Engineer November 16, 2016 Improving RELIABILITY and mitigating
More informationNORTH AMERICAN ELECTRIC RELIABILITY CORPORATION
NORTH AMERICAN ELECTRIC RELIABILITY CORPORATION NARUC Energy Regulatory Partnership Program The Public Services Regulatory Commission of Armenia and The Iowa Utilities Board Janet Amick Senior Utility
More informationReliability Standard Audit Worksheet 1
Reliability Standard Audit Worksheet 1 CIP-012-1 Cyber Security Communications between Control Centers This section to be completed by the Compliance Enforcement Authority. Audit ID: Registered Entity:
More informationReliability Standard Audit Worksheet 1
Reliability Standard Audit Worksheet 1 CIP-002-5.1 Cyber Security BES Cyber System Categorization This section to be completed by the Compliance Enforcement Authority. Audit ID: Registered Entity: NCR
More informationQuébec Reliability Standards Compliance Monitoring and Enforcement Program Implementation Plan Annual Implementation Plan
Québec Reliability Standards Compliance Monitoring and Enforcement Program Implementation Plan 2017 Annual Implementation Plan Effective Date: January 1, 2017 Approved by the Régie: December 1, 2016 Table
More informationReliability Compliance Update. Reliability Standards and Compliance Subcommittee Preston Walker August 16, 2018
Reliability Compliance Update Reliability Standards and Compliance Subcommittee Preston Walker August 16, 2018 NERC Standards Under Development Standards Project Action End Date Comment 08/27/2018 Draft
More informationSPP RTO Compliance Forum Western Area Power Administration March 11, 2015
SPP RTO Compliance Forum Western Area Power Administration March 11, 2015 Mark Buchholz WAPA Upper Great Plains Region Compliance Manager What is Western? One of four Power Marketing Administration within
More informationNERC Overview and Compliance Update
NERC Overview and Compliance Update Eric Ruskamp Manager, Regulatory Compliance August 17, 2018 1 Agenda NERC Overview History Regulatory Hierarchy Reliability Standards Compliance Enforcement Compliance
More information2018 MRO Regional Risk Assessment
MIDWEST RELIABILITY ORGANIZATION 2018 MRO Regional Risk Assessment Ben Lewiski, Risk Assessment and Mitigation Engineer November 28, 2017 Improving RELIABILITY and mitigating RISKS to the Bulk Power System
More informationReliability Standard Audit Worksheet 1
Reliability Standard Audit Worksheet 1 PRC-004-3 Protection System Misoperation Identification and Correction This section to be completed by the Compliance Enforcement Authority. Audit ID: Registered
More informationReliability Standard Audit Worksheet 1
Reliability Standard Audit Worksheet 1 PRC-004-3 Protection System Misoperation Identification and Correction This section to be completed by the Compliance Enforcement Authority. Audit ID: Registered
More informationStandards Authorization Request Form
Standards Authorization Request Form When completed, email this form to: sarcomm@nerc.com NERC welcomes suggestions to improve the reliability of the bulk power system through improved reliability standards.
More informationProcedure For NPCC Bulk Electric System Asset Database
Procedure For NPCC Bulk Electric System Asset Database Compliance Procedure 09 (CP-09) Revision 2 Table of Contents 1. Introduction and Purpose... 3 2. Responsibilities... 3 3. Overview... 3 4. Asset Database...
More informationCritical Asset Identification Methodology. William E. McEvoy Northeast Utilities
Critical Asset Identification Methodology William E. McEvoy Northeast Utilities Disclaimer This NPCC TFIST workshop provides a forum for the presentation and discussion of member experience in the implementation
More informationDRAFT. Cyber Security Communications between Control Centers. March May Technical Rationale and Justification for Reliability Standard CIP-012-1
DRAFT Cyber Security Communications between Control Centers Technical Rationale and Justification for Reliability Standard CIP-012-1 March May 2018 NERC Report Title Report Date I Table of Contents Preface...
More informationBoard of Trustees Compliance Committee
Board of Trustees Compliance Committee August 13, 2014 10:00 a.m. 11:00 a.m. Pacific The Westin Bayshore 1601 Bayshore Drive Vancouver, BC V6G 2V4 Reliability Assurance Initiative (RAI) Progress Report
More informationReliability Coordinator Procedure PURPOSE... 1
No. RC0550 Restriction: Table of Contents PURPOSE... 1 1. RESPONSIBILITIES... 2 1.1.1. CAISO RC... 2 1.1.2. RC Working Groups... 2 1.1.3. Operationally Affected Parties... 2 1.1.4. RC Oversight Committee...
More informationReliability Standard Audit Worksheet 1
Reliability Standard Audit Wksheet 1 EOP-008-2 Loss of Control Center Functionality This section to be completed by the Compliance Enfcement Authity. Audit ID: Registered Entity: NCR Number: Compliance
More informationCompliance Enforcement Initiative
Compliance Enforcement Initiative Filing and Status Update November 2, 2011 Rebecca Michael Status of the Filings NERC filed several components of the Compliance Enforcement Initiative on September 30,
More informationStandard Development Timeline
Standard Development Timeline This section is maintained by the drafting team during the development of the standard and will be removed when the standard is adopted by the NERC Board of Trustees (Board).
More informationThis section is maintained by the drafting team during the development of the standard and will be removed when the standard becomes effective.
Standard Development Timeline This section is maintained by the drafting team during the development of the standard and will be removed when the standard becomes effective. Description of Current Draft
More informationLee County Electric Cooperative, Inc.
Lee County Electric Cooperative, Inc. BUILDING A Compliance Program Background A Not-For-Profit Florida Corporation Providing electric service in Southwest Florida since 1940 Five Counties (Lee, Collier,
More informationStandard Development Timeline
Standard Development Timeline This section is maintained by the drafting team during the development of the standard and will be removed when the standard is adopted by the NERC Board of Trustees (Board).
More informationTitle. Critical Infrastructure Protection Getting Low with a Touch of Medium. CanWEA Operations and Maintenance Summit 2018.
Critical Infrastructure Protection Getting Low with a Touch of Medium Title CanWEA Operations and Maintenance Summit 2018 January 30, 2018 George E. Brown Compliance Manager Acciona Wind Energy Canada
More informationNERC and Regional Coordination Update. Operating Committee Preston Walker January 9, 2018
NERC and Regional Coordination Update Operating Committee Preston Walker January 9, 2018 Standards Project Action End Date Project 2017-07 Standards Alignment with Registration NERC Standards Under Development
More informationAppendix A3 - Northeast Power Coordinating Council (NPCC) 2015 CMEP Implementation Plan for Entities within the U.S.
Appendix A3 - Northeast Power Coordinating Council (NPCC) 2015 CMEP Implementation Plan for Entities within the U.S. This Appendix contains the CMEP Implementation Plan (IP) for the registered entities
More informationCity of Grand Island Tuesday, February 28, 2017 Council Session
City of Grand Island Tuesday, February 28, 2017 Council Session Item G-6 #2017-50 - Approving Transmission Services Agreement with Nebraska Public Power District Staff Contact: Tim Luchsinger, Stacy Nonhof
More informationNERC Notice of Penalty regarding Upper Peninsula Power Company, FERC Docket No. NP09-_-000
May 7, 2009 Ms. Kimberly Bose Secretary Federal Energy Regulatory Commission 888 First Street, N.E. Washington, D.C. 20426 Re: NERC Notice of Penalty regarding, FERC Docket No. NP09-_-000 Dear Ms. Bose:
More informationCIP Cyber Security Configuration Change Management and Vulnerability Assessments
Standard Development Timeline This section is maintained by the drafting team during the development of the standard and will be removed when the standard becomes effective. Development Steps Completed
More informationStandard Development Timeline
Standard Development Timeline This section is maintained by the drafting team during the development of the standard and will be removed when the standard becomes effective. Description of Current Draft
More informationMulti-Region Registered Entity Coordinated Oversight Program
Multi-Region Registered Entity Coordinated Oversight Program Ken McIntyre, Vice President and Director of Standards and Compliance Compliance Committee Open Meeting February 7, 2018 Coordinated Oversight
More informationDisclaimer Executive Summary Introduction Overall Application of Attachment Generation Transmission...
CIP-002-4 Cyber Security Critical Cyber Asset Identification Rationale and Implementation Reference Document September, 2010 Table of Contents TABLE OF CONTENts Disclaimer... 3 Executive Summary... 4 Introduction...
More informationCIP Cyber Security Standards. Development Update
CIP Cyber Security Standards Development Update John Lim Consolidated Edison Co. of New York Rob Antonishen Ontario Power Generation September 21-22, 2010 1 Disclaimer This NPCC TFIST workshop provides
More informationCIP Cyber Security Configuration Change Management and Vulnerability Assessments
CIP-010-2 Cyber Security Configuration Change Management and Vulnerability Assessments A. Introduction 1. Title: Cyber Security Configuration Change Management and Vulnerability Assessments 2. Number:
More informationRisk-Based Compliance Monitoring & Enforcement Oversight Framework. FRCC Spring Compliance Workshop April 14 16, 2015
Risk-Based Compliance Monitoring & Enforcement Oversight Framework FRCC Spring Compliance Workshop April 14 16, 2015 Upcoming Events FRCC is Conducting Individual Outreach NERC CIP Version 5 Workshop &
More informationCOM Interpersonal Communications Capabilities
COM-001-3 Interpersonal Communications Capabilities 1 Background In the FERC Notice of Proposed Rulemaking (NOPR) for COM-001-2, the Commission asked for comments on whether the standard should be modified
More informationProject Retirement of Reliability Standard Requirements
Project 2013-02 Retirement of Reliability Standard Requirements Unofficial Comment Form for Paragraph 81 (P81) Project Retirement of Reliability Standard Requirements This form is provided in a Word format
More informationReliability Standard Audit Worksheet 1
Reliability Standard Audit Worksheet 1 FAC-003-4 Transmission Vegetation Management. Registered Entity Name: Applicable Function(s): Applicable only for TO and GO Compliance Monitoring Method: RSAW Version:
More informationProject Posting 8 Frequently Asked Questions Guide
Project 2007-02 Posting 8 Frequently Asked Questions Guide General Questions 1. What were the inputs that drove the development of posting 8 of Project 2007-02? The NERC Board of Trustees November 7 th,
More informationStandard CIP Cyber Security Critical Cyber As s et Identification
A. Introduction 1. Title: Cyber Security Critical Cyber Asset Identification 2. Number: CIP-002-4 3. Purpose: NERC Standards CIP-002-4 through CIP-009-4 provide a cyber security framework for the identification
More informationStandards Authorization Request Form
Standards Authorization Request Form When completed, email this form to: sarcomm@nerc.com NERC welcomes suggestions to improve the reliability of the bulk power system through improved reliability standards.
More informationCIP Cyber Security Configuration Change Management and Vulnerability Assessments
CIP-010-2 3 Cyber Security Configuration Change Management and Vulnerability Assessments A. Introduction 1. Title: Cyber Security Configuration Change Management and Vulnerability Assessments 2. Number:
More informationStandard CIP Cyber Security Systems Security Management
A. Introduction 1. Title: Cyber Security Systems Security Management 2. Number: CIP-007-1 3. Purpose: Standard CIP-007 requires Responsible Entities to define methods, processes, and procedures for securing
More informationMeeting- Overview of. Development
NPCC 2008 General Meeting- Standards Program Area- Overview of Regional Standards Development Guy V. Zito Assistant Vice President Standards September 25, 2008 September 25, 2008 1 Standards Program Area
More informationCIP Cyber Security Critical Cyber Asset Identification. Rationale and Implementation Reference Document
CIP-002-4 Cyber Security Critical Cyber Asset Identification Rationale and Implementation Reference Document NERC Cyber Security Standards Drafting Team for Order 706 December 2010 This document provides
More informationReliability Standard Audit Worksheet 1
Reliability Standard Audit Worksheet 1 CIP-006-6 Cyber Security Physical Security of BES Cyber Systems This section to be completed by the Compliance Enforcement Authority. Audit ID: Registered Entity:
More informationMisoperations Information Data Analysis System (MIDAS)
Misoperations Information Data Analysis System (MIDAS) End User Guide June 2016 NERC Report Title Report Date I Table of Contents Preface... iii Chapter 1 Reporting Obligations...1 Entities Obligated to
More informationElectric Transmission Reliability
1965 Northeast Blackout #1 History of NERC 1968 North American Electric Reliability Council (NERC) formed Voluntary compliance with reliability standards 2003 Northeast Blackout #2 2006 NERC accepted at
More informationReliability Standard Audit Worksheet 1
Reliability Standard Audit Wksheet 1 CIP-009-6 Cyber Security Security Management Controls This section to be completed by the Compliance Enfcement Authity. Audit ID: Registered Entity: NCR Number: Compliance
More informationEssential Reliability Services NERC Staff Report
Essential Reliability Services NERC Staff Report Mark Lauby, Senior Vice President and Chief Reliability Officer Annual Meeting of the National Conference of State Legislators August 20, 2014 About NERC
More informationBulk Electric System Definition Changes and Reporting
Bulk Electric System Definition Changes and Reporting June 12, 2014 Greg Sorenson, PE Senior Compliance Engineer gsorenson.re@spp.org 501.688.1713 Overview BES Definition Change BES Definition Reference
More informationThis section is maintained by the drafting team during the development of the standard and will be removed when the standard becomes effective.
Standard Development Timeline This section is maintained by the drafting team during the development of the standard and will be removed when the standard becomes effective. Development Steps Completed
More informationCIP Cyber Security Personnel & Training
A. Introduction 1. Title: Cyber Security Personnel & Training 2. Number: CIP-004-5.1 3. Purpose: To minimize the risk against compromise that could lead to misoperation or instability in the BES from individuals
More informationrequirements in a NERC or Regional Reliability Standard.
CIP 002 5.1 Cyber Security BES Cyber System Categorization A. Introduction 1. Title: Cyber Security BES Cyber System Categorization 2. Number: CIP 002 5.1 3. Purpose: To identify and categorize BES Cyber
More informationA. Introduction. B. Requirements and Measures
A. Introduction 1. Title: Communications 2. Number: COM-001-3 3. Purpose: To establish Communication capabilities necessary to maintain reliability. 4. Applicability: 4.1. Functional Entities: 4.1.1. Transmission
More informationModifications to TOP and IRO Standards
Modifications to TOP and IRO Standards Jason Smith, Southwest Power Pool Industry Webinar July 22, 2016 NERC Antitrust Guidelines It is NERC's policy and practice to obey the antitrust laws to avoid all
More informationReliability Standard Audit Worksheet 1
Reliability Standard Audit Wksheet 1 CIP-004-6 Cyber Security Personnel & Training This section to be completed by the Compliance Enfcement Authity. Audit ID: Registered Entity: NCR Number: Compliance
More informationStandard Development Timeline
Standard Development Timeline This section is maintained by the drafting team during the development of the standard and will be removed when the standard becomes effective. Description of Current Draft
More informationCIP Cyber Security Personnel & Training
A. Introduction 1. Title: Cyber Security Personnel & Training 2. Number: CIP-004-6 3. Purpose: To minimize the risk against compromise that could lead to misoperation or instability in the Bulk Electric
More informationCIP Cyber Security Systems Security Management
A. Introduction 1. Title: Cyber Security System Security Management 2. Number: CIP-007-5 3. Purpose: To manage system security by specifying select technical, operational, and procedural requirements in
More informationUnofficial Comment Form 1st Draft of PRC-005-3: Protection System and Automatic Reclosing Maintenance (Project )
Unofficial Comment Form 1st Draft of PRC-005-3: Protection System and Automatic Reclosing Maintenance (Project 2007-17.2) Please DO NOT use this form for submitting comments. Please use the electronic
More informationCIP Version 5 Evidence Request User Guide
CIP Version 5 Evidence Request User Guide Version 1.0 December 15, 2015 NERC Report Title Report Date I Table of Contents Preface... iv Introduction... v Purpose... v Evidence Request Flow... v Sampling...
More informationCIP Cyber Security Configuration Change Management and Vulnerability Assessments
CIP 010 1 Cyber Security Configuration Change Management and Vulnerability Assessments A. Introduction 1. Title: Cyber Security Configuration Change Management and Vulnerability Assessments 2. Number:
More informationStandard CIP 007 3a Cyber Security Systems Security Management
A. Introduction 1. Title: Cyber Security Systems Security Management 2. Number: CIP-007-3a 3. Purpose: Standard CIP-007-3 requires Responsible Entities to define methods, processes, and procedures for
More informationCyber Security Reliability Standards CIP V5 Transition Guidance:
Cyber Security Reliability Standards CIP V5 Transition Guidance: ERO Compliance and Enforcement Activities during the Transition to the CIP Version 5 Reliability Standards To: Regional Entities and Responsible
More informationProject Consideration of Commission Directives in Order No. 693
Project 2009-02 Consideration of Commission Directives in Order Order P 905-906 Further, consistent with the NOPR, the Commission directs the ERO to modify IRO-002-1 to require a minimum set of tools that
More informationReliability Standard Audit Worksheet 1
Reliability Standard Audit Wksheet 1 CIP-008-5 Cyber Security Incident Repting and Response Planning This section to be completed by the Compliance Enfcement Authity. Audit ID: Registered Entity: NCR Number:
More informationStandard CIP Cyber Security Electronic Security Perimeter(s)
A. Introduction 1. Title: Cyber Security Electronic Security Perimeter(s) 2. Number: CIP-005-2 3. Purpose: Standard CIP-005-2 requires the identification and protection of the Electronic Security Perimeter(s)
More informationStandard CIP Cyber Security Security Management Controls
A. Introduction 1. Title: Cyber Security Security Management Controls 2. Number: CIP-003-4 3. Purpose: Standard CIP-003-4 requires that Responsible Entities have minimum security management controls in
More informationCritical Cyber Asset Identification Security Management Controls
Implementation Plan Purpose On January 18, 2008, FERC (or Commission ) issued Order. 706 that approved Version 1 of the Critical Infrastructure Protection Reliability Standards, CIP-002-1 through CIP-009-1.
More informationBritish Columbia Utilities Commission Reliability Standards with Effective Dates adopted in British Columbia
Page 1 of 15 British Columbia Utilities Reliability Standards with s adopted in British Columbia BAL-001-2 Standard Real Power Balancing Control Performance R-14-16 July 1, 2016 BAL-002-1 1 Disturbance
More information5. Effective Date: The first day of the first calendar quarter after applicable regulatory approval.
Introduction 1. Title: IROL and SOL Mitigation in the ERCOT Region 2. Number: IRO-006-TRE-1 3. Purpose: To provide and execute transmission loading relief procedures that can be used to mitigate SOL or
More informationNERC Relay Loadability Standard Reliability Standards Webinar November 23, 2010
Transmission Relay Loadability FERC Order 733 Project 2010-1313 NERC Relay Loadability Standard Reliability Standards Webinar November 23, 2010 Project Overview 2 Standards Involved PRC-023-2 Transmission
More informationStandard CIP Cyber Security Systems Security Management
A. Introduction 1. Title: Cyber Security Systems Security Management 2. Number: CIP-007-4 3. Purpose: Standard CIP-007-4 requires Responsible Entities to define methods, processes, and procedures for securing
More informationStandard CIP 007 4a Cyber Security Systems Security Management
A. Introduction 1. Title: Cyber Security Systems Security Management 2. Number: CIP-007-4a 3. Purpose: Standard CIP-007-4 requires Responsible Entities to define methods, processes, and procedures for
More information2014 Annual Compliance Assessment
2014 Annual Compliance Assessment 3/5/2015 Nevada Irrigation District Report on Compliance with the NERC and WECC Reliability Standards NEVADA IRRIGATION DISTRICT 2014 ANNUAL REPORT ON COMPLIANCE Introduction
More informationCompliance: Evidence Requests for Low Impact Requirements
MIDWEST RELIABILITY ORGANIZATION Compliance: Evidence Requests for Low Impact Requirements Jess Syring, CIP Compliance Engineer MRO CIP Low Impact Workshop March 1, 2017 Improving RELIABILITY and mitigating
More informationPRC Coordination of Protection Systems for Performance During Faults
PRC-027-1 Coordination of Protection Systems for Performance During Faults A. Introduction 1. Title: Coordination of Protection Systems for Performance During Faults 2. Number: PRC-027-1 3. Purpose: To
More informationStandard CIP Cyber Security Electronic Security Perimeter(s)
A. Introduction 1. Title: Cyber Security Electronic Security Perimeter(s) 2. Number: CIP-005-1 3. Purpose: Standard CIP-005 requires the identification and protection of the Electronic Security Perimeter(s)
More informationStandards Authorization Request Justification
Standards Authorization Request Justification Project 2009-02 Real-time Monitoring and Analysis Capabilities NERC Report Title Report Date 1 of 30 3353 Peachtree Road NE Suite 600, North Tower Atlanta,
More informationCompliance Exception and Self-Logging Report Q4 2014
Agenda Item 5 Board of Trustees Compliance Committee Open Session February 11, 2015 Compliance Exception and Self-Logging Report Q4 2014 Action Information Introduction Beginning in November 2013, NERC
More informationERO Certification and Review Procedure
ERO Certification and Review Procedure Reliability Assurance December 15, 2016 3353 Peachtree Road NE Suite 600, North Tower Atlanta, GA 30326 404-446-2560 www.nerc.com 1 of 16 Table of Contents Table
More informationImplementation Plan for Newly Identified Critical Cyber Assets and Newly Registered Entities
Implementation Plan for Newly Identified Critical Cyber Assets and Newly Registered Entities This Implementation Plan applies to Cyber Security Standards CIP-002-2 through CIP-009-2 and CIP-002-3 through
More informationLow Impact Generation CIP Compliance. Ryan Walter
Low Impact Generation CIP Compliance Ryan Walter Agenda Entity Overview NERC CIP Introduction CIP-002-5.1, Asset Classification What Should Already be Done CIP-003-7, Low Impact Requirements Tri-State
More informationStandard CIP Cyber Security Critical Cyber As s et Identification
A. Introduction 1. Title: Cyber Security Critical Cyber Asset Identification 2. Number: CIP-002-4 3. Purpose: NERC Standards CIP-002-4 through CIP-009-4 provide a cyber security framework for the identification
More informationCCC Compliance Guidance Task Force. Patti Metro, Manager, Transmission & Reliability Standards, NRECA Compliance Committee May 4, 2016
CCC Compliance Guidance Task Force Patti Metro, Manager, Transmission & Reliability Standards, NRECA Compliance Committee May 4, 2016 Key CCC Compliance Guidance Task Force Deliverables Developed procedure
More informationImpacts and Implementation: NERC Reliability Standards, Compliance Initiatives, and Regulatory Activities
Impacts and Implementation: NERC Reliability Standards, Compliance Initiatives, and Regulatory Activities NRECA TechAdvantage March 2014 Patti Metro Manager, Transmission & Reliability Standards NRECA
More informationTOP-010-1(i) Real-time Reliability Monitoring and Analysis Capabilities
A. Introduction 1. Title: Real-time Reliability Monitoring and Analysis Capabilities 2. Number: TOP-010-1(i) 3. Purpose: Establish requirements for Real-time monitoring and analysis capabilities to support
More informationStandards. Mark Lauby, Vice President and Director of Standards Board of Trustees Meeting November 7, 2013
Standards Mark Lauby, Vice President and Director of Standards Board of Trustees Meeting November 7, 2013 Geomagnetic Disturbance Operations EOP-010-1 Reliability benefits Enhance operating response to
More informationRELIABILITY OF THE BULK POWER SYSTEM
RELIABILITY OF THE BULK POWER SYSTEM Jim Burley, VP of Compliance, Mitigation and Standards October 26, 2011 Promoting RELIABILITY and Mitigating RISKS to the Bulk Power System Context In the Beginning-2003
More informationImplementation Plan for Version 5 CIP Cyber Security Standards
Implementation Plan for Version 5 CIP Cyber Security Standards April 10September 17, 2012 Note: On September 17, 2012, NERC was alerted that some references in the Initial Performance of Certain Periodic
More informationWECC Internal Controls Evaluation Process WECC Compliance Oversight Effective date: October 15, 2017
WECC Internal Controls Evaluation Process WECC Compliance Oversight Effective date: October 15, 2017 155 North 400 West, Suite 200 Salt Lake City, Utah 84103-1114 WECC Internal Controls Evaluation Process
More informationSummary of FERC Order No. 791
Summary of FERC Order No. 791 On November 22, 2013, the Federal Energy Regulatory Commission ( FERC or Commission ) issued Order No. 791 adopting a rule that approved Version 5 of the Critical Infrastructure
More informationProposed Convention for Numbering of NERC Reliability Standards Draft September 9, 2004
Proposed Convention for ing of NERC Reliability s Draft September 9, 2004 Introduction The Version 0 Drafting Team proposes to initiate a new convention for numbering NERC reliability standards concurrent
More informationStandard CIP Cyber Security Critical Cyber Asset Identification
Standard CIP 002 1 Cyber Security Critical Cyber Asset Identification Standard Development Roadmap This section is maintained by the drafting team during the development of the standard and will be removed
More informationStandard CIP Cyber Security Critical Cyber Asset Identification
Standard CIP 002 1 Cyber Security Critical Cyber Asset Identification Standard Development Roadmap This section is maintained by the drafting team during the development of the standard and will be removed
More informationComment Form for 1 st Draft of Standard for Backup Facilities (Project )
Comment Form for 1 st Draft of Standard for Backup Facilities (Project 2006-04) Please use this form to submit comments on the 1 st draft of the standards for Backup Facilities (Project 2006-04). Comments
More information