Update in NERC CIP Activities September 4, 2014
Update in NERC CIP Activities September 4, 2014
Jan 06, 2016
Update in NERC CIP Activities September 4, 2014. Agenda. Update on CIP-014-1 Update on Revisions to CIP Version 5 -x Posting v6 Posting Questions. Key Dates: Project 2014-04 Physical Security (CIP-014-1). NOPR for FERC Approval IssuedJuly 17 Comments DueSept 8 - PowerPoint PPT Presentation
Welcome message from author
This document is posted to help you gain knowledge. Please leave a comment to let me know what you think about it! Share it to your friends and learn new things together.
Transcript
Update in NERC CIP Activities
September 4, 2014
2
• Update on CIP-014-1 • Update on Revisions to CIP Version 5
-x Posting v6 Posting
• Questions
Agenda
• NOPR for FERC Approval Issued July 17 Comments Due Sept 8 Comment Responses Sept 22
• Adopted by NERC Board of Trustees May 13• Approved by Industry Final Ballot May 5• FERC Directive March 7
Key Dates: Project 2014-04 Physical Security (CIP-014-1)
• CIP Standards Revisions 45-day comment period Sept 3 – Oct
17 Ballot Oct 8-17 Non-Binding Poll (VRF/VSL) Oct 8-17 RSAWs Sept 17** SDT meeting, Austin TX Oct 22-24 Final Ballot
Oct 31 – Nov 10**
**Expected date
Key DatesCIP-002 to CIP-011 Revisions
• CIP-003-6 R2 for Low Impact Assets Requires implementation of one or more documented cyber security
plan(s) Attachment 1 includes required elements or options that may be
selected to address: o Cyber security o Physical access controlso Electronic access controlso Cyber Security Incident response
Attachment 2 includes detailed measures for demonstrating compliance Introduces 2 new definitions
o Low Impact BES Cyber System Electronic Access Points (LEAP)o Low Impact External Routable Connectivity (LERC)
Significant Changes to CIP-003-6
• CIP-010-2 R4 for Transient Devices Requires implementation of one or more documented plan(s) Attachment 1 includes required elements or options that may be
selected to address: o Transient Cyber Asset(s) Owned or Managed by the Responsible Entityo Transient Cyber Asset(s) Owned or Managed by Vendors or Contractorso Removable Media
Attachment 2 includes detailed measures for demonstrating compliance Modifies 2 definitions, based on comments
o Transient Cyber Asset o Removable Media
Significant Changes to CIP-010-2
• Single ballot for IAC language removal. These proposed standards will be version X for the ballot.
o CIP-003-X o CIP-004-X o CIP-007-X o CIP-010-X o CIP-011-X
• Separate ballots for language changes Low Impact Assets and Transient Devices.
o CIP-003-6o CIP-010-2o Definitions – Lowso Definitions – TDo IP-v6
CIP-002 to CIP-011 Revision Postings
CIP-002 to CIP-011 Revision Postings
9
• Project 2014-02 CIP Standards Version 5 Revisions http://www.nerc.com/pa/Stand/Pages/Project-2014-XX-Critical-
Infrastructure-Protection-Version-5-Revisions.aspx
• Project 2014-04 Physical Security http://www.nerc.com/pa/Stand/Pages/Project-2014-04-Physical-
Security.aspx
References
Related Documents
