FERC Staff Report Identifies Lessons Learned From CIP Reliability Audits
Posted by
admin on
Oct 12, 2017
Federal Energy Regulatory Commission (FERC) staff issued a report offering recommendations to help users, owners, and operators of the bulk-power system assess their risk, compliance and overall cybersecurity. The findings in the report are based on lessons learned from several non-public audits of registered entities. These lessons learned can help facilitate compliance with mandatory reliability standards also, more generally, will facilitate efforts to improve the security of the nation’s electric grid.
Staff from FERC’s Office of Electric Reliability and Office of Enforcement conducted the audits in collaboration with staff from the North American Electric Reliability Corporation (NERC) and its regional entities. The audits assessed compliance with version 5 of NERC’s Critical Infrastructure Protection (CIP) standards and also identified possible areas for improvement that are not specifically addressed by the CIP reliability standards. The audits were completed in fiscal years 2016 and 2017.
The report describes the lessons learned from the audits, including insights into the cybersecurity and CIP compliance issues encountered by the audited entities. These lessons learned will help other entities improve their compliance with the CIP reliability standards as well as their overall cybersecurity. Among staff’s recommendations:
Source:
http://www.electricenergyonline.com/detail_news.php?ID=660051&titre=FERC+Staff+Report+Identifies+Lessons+Learned+From+CIP+Reliability+Audits+&cat=;56