Transmission & Distribution

NERC CIP Low Impact Requirements — Electronic Access Controls, Proposed Modifications

by Michael C. Johnson July 22, 2016

As noted in my previous post on the Electronic Access Control, I indicated that the Standard Drafting Team (SDT) charged with working on the FERC-ordered Low Impact External Routable Connectivity (LERC) modifications was in the process of completing its initial revisions to be submitted for industry comment and balloting. This update summarizes the most important […]

Read the full article →

The Next Generation Electric Utility 2.0

by Ahsan Upal July 20, 2016

The way we get power to our homes and businesses is changing. And while our dependence on local power utilities for our supply of electricity will not change, one thing that will is the level and type of services the utilities provide us. The steady flow of power supply we’ve come to expect will soon […]

Read the full article →

NERC CIP Low Impact Requirements — Physical Security Controls

by Michael C. Johnson July 14, 2016

In this seventh blog installment on NERC CIP Low Impact BES Cyber Systems (BCS) requirements, I’ll cover the physical security controls necessary for successfully implementing these BCS requirements. What’s Covered CIP-003-6, Requirement R2, Attachment 1, Section 2 — indicates that physical security must be applied to the BCS requirements and any Low Impact BCS Electronic […]

Read the full article →

NERC CIP Low Impact Requirements — Electronic Access Controls

by Michael C. Johnson July 7, 2016

In this sixth blog installment on successfully implementing the NERC CIP Low Impact BES Cyber Systems (BCS) requirements, I’ll cover the requirements for electronic access controls. What’s Required CIP-003-6, Requirement R2, Attachment 1, Section 2 — the Electronic Access Controls section of the CIP requirements — indicates that a facility, or BES asset, with Low […]

Read the full article →

NERC CIP Low Impact Requirements — Security Awareness & Incident Response

by Michael C. Johnson June 22, 2016

In this fifth blog installment on successfully implementing the NERC CIP Low Impact BES Cyber Systems (BCS) requirements, I’ll cover the two requirements that must be fully implemented by April 1, 2017. Cyber Security Awareness For Entities with an existing High/Medium Impact BCS CIP Program, use of that program’s Security Awareness processes will cover the […]

Read the full article →

NERC CIP Low Impact Requirements — Cultural Change

by Michael C. Johnson June 1, 2016

As mentioned in my previous post, NERC CIP Low Impact Requirements, this is the second installment on the implementation of the NERC CIP Low Impact BES Cyber Systems (BCS) requirements. In this post, I’ll be discussing a topic that, although not directly tied to the requirement’s language, can still be a significant factor in successfully implementing […]

Read the full article →