Standards. Howard Gugel, Director of Standards Board of Trustees Meeting February 11, 2016

Transcription

1 Standards Howard Gugel, Director of Standards Board of Trustees Meeting February 11, 2016

2 Balancing Authority Reliability-based Controls Reliability Benefits Data requirements for Balancing Authority (BA) to calculate Reporting ACE Ensure that BAs do not excessively depend on other BAs to meet demand and Interchange obligations Address FERC Order No. 693 and 810 directives Action Adopt BAL Balancing Authority Control Adopt FAC Facility Interconnection Requirements Retire BAL Inadvertent Interchange 2 RELIABILITY ACCOUNTABILITY

3 Transmission Vegetation Management Reliability Benefits Corrects Minimum Vegetation Clearance Distance based on EPRI tests Action Adopt FAC Transmission Vegetation Management 3 RELIABILITY ACCOUNTABILITY

4 Midwest Reliability Organization Standard Processes Manual Revisions Background Periodic review by Midwest Reliability Organization Minor changes Action Approve Midwest Reliability Organization Regional Reliability Standard Processes Manual 4 RELIABILITY ACCOUNTABILITY

5 System Operating Limits Background Review of continent-wide Standards in WECC Requirements covered in other Standards Action Retire TOP-007-WECC-1a System Operating Limits 5 RELIABILITY ACCOUNTABILITY

6 6 RELIABILITY ACCOUNTABILITY

7 E-ISAC Update Marc Sachs, Senior Vice President and Chief Security Officer Board of Trustees Meeting February 11,

8 Summary of Q Sharing and reporting 129 typosquatting notifications 184 E-ISAC staff posts to the portal 47 member responses to the portal items 46 additional posts to the portal from members 70 calls to the E-ISAC hotline Products Weekly reports every Monday afternoon Monthly reports started in October 2015 Daily reports started in January 2016 Events GridSecCon GridEx III 2

9 Summary of Q Staffing Finished adding new staff 21 in Washington office, one in Atlanta Facility Renovations completed in summer 2015 New information technology equipment installation began in December Completion of separation project expected by March 2016 Member Executive Committee Established in July 2015 Met by phone in each month in fourth quarter Two working groups actively working on strategic review recommendations 3

10 2016 Plans Technology Major portal improvements, including new look/feel, chat, ability to manipulate data, and increased private collaboration space New server separate from NERC Malware/device lab Personnel Formal technical training program for individuals and teams Full-time person on NCCIC floor Industry augmentation on the Watch floor Facility Redesign Watch floor TSCM (bug) sweep 4

11 2016 Plans CRISP Additional government analysis capability New types of sensors and data collection Products GridEx III Distributed Play lessons learned and Executive Tabletop recommendation reports New daily one-page summary, and new annual report Events Expand GridSecCon Local/regional one-day physical and cyber security seminars Cross-sector and external partners Vice-chair of US National Council of ISACs International partners, such as CCIRC, CERT Australia, CERT UK, etc. 5

12 Ukraine Event December 23, 2015 Power engineers at Ukraine s Prykarpattyaoblenergo electric utility identified failures in the robot that provided control of the substation and power equipment Over 80,000 customers throughout the region were without power for up to six hours Once Prykarpattyaoblenergo discovered the effects of the malware they shifted operations into manual mode to mitigate the outage Investigation is on-going 6

13 7

14 GridEx III Update Bill Lawrence, Sr. Mgr. CIP Awareness NERC Board of Trustees meeting February 11, 2016

15 GridEx III Objectives

16 Increasing Participation

17 Unprecedented Participation

18 Communications NERC Crisis Action Team Electricity Sub-sector Coordinating Council (ESCC) Energy GCC Other SCCs Executive Coordination Regional Entities Trade Associations NERC Bulk Power System Awareness (BPSA) E-ISAC Electricity Information Sharing & Analysis Center DOE Department of Energy DHS NCCIC ICS-CERT US-CERT Other Federal Agencies US: FBI, FERC, DOD Canada: Public Safety Canada, NRCan, RCMP, CSIS, CCIRC Coordination with Government Other Critical Infrastructures Telecommunications Oil & Gas others Vendor Support IT, ICS, ISP, Anti-virus Bulk-Power System Entities Coordinated Operations Reliability Coordinators, Balancing Authorities, Generator Operators, Transmission Operators, Load Serving Entities, etc. Local, State/Provincial Government Emergency Management Organizations Emergency Operations Centers / Fusion Centers Local FBI, PSAs ExCon GridEx III Exercise Control NERC staff, GEWG, Booz Allen, Nat l Labs, SMEs for Sim-cell, etc.

19 Communications

20 Communications

21 Industry / Government Collaboration

22 Culture of Learning Certifications (NERC System Operators and others) Lessons learned and recommendations Follow-on work with CIPC, ESCC (and DARPA)

23 A Long-Term View

24