Similar documents
CIP v5/v6 Implementation Plan CIP v5 Workshop. Tony Purgar October 2-3, 2014

NERC Cyber Security Standards

CIP R2 BES Assets Containing Low Impact BCS. Lisa Wood, CISA, CBRA, CBRM Compliance Auditor Cyber Security

Summary of CIP Version 5 Standards

Implementation Plan for Version 5 CIP Cyber Security Standards

CIP Cyber Security Security Management Controls

The first step in protecting Critical Cyber Assets is identifying them. CIP-002 focuses on this identification process.

Cyber Security Compliance (NERC CIP V5)

Automating NERC CIP Compliance for EMS. Walter Sikora 2010 EMS Users Conference

North American Electric Reliability Corporation: Critical Infrastructure Protection, Version 5 (NERC-CIP V5)

Lessons Learned CIP Reliability Standards

Cyber Security Standards Update: Version 5

Standard CIP 004 3a Cyber Security Personnel and Training

Completed. Document Name. NERC CIP Requirements CIP-002 Critical Cyber Asset Identification R1 Critical Asset Identifaction Method

Notable Changes to NERC Reliability Standard CIP-005-5

ERCOT Design and Implementation of Internal Controls and benefits for NERC CMEP/RAI

Entity Name ( Acronym) NCRnnnnn Risk Assessment Questionnaire

Alberta Reliability Standard Cyber Security Implementation Plan for Version 5 CIP Security Standards CIP-PLAN-AB-1

Digital Infrastructure - A Model For Success

Alberta Reliability Standard Cyber Security Physical Security of BES Cyber Systems CIP-006-AB-5

2016 Business Plan and Budget. Texas Reliability Entity, Inc. Approved by Texas RE Board of Directors. Date: May 21, 2015

AURORA Vulnerability Background

How to Integrate NERC s Requirements in an Ongoing Automation and Integration Project Framework

Cyber Security Standards: Version 5 Revisions. Security Reliability Program 2015

Standard CIP 007 3a Cyber Security Systems Security Management

NERC CIP Tools and Techniques

Secure Remote Substation Access Interest Group Part 3: Review of Top Challenges, CIPv5 mapping, and looking forward to 2014!

ReliabilityFirst CIP Evidence List CIP-002 through CIP-009 are applicable to RC, BA, IA, TSP, TO, TOP, GO, GOP, LSE, NERC, & RE

NERC Audit Definition

TASK TDSP Web Portal Project Cyber Security Standards Best Practices

Safety Share Who is Cleco? CIP-005-3, R5 How What

Job Descriptions. Job Title Reports To Job Description TRANSMISSION SERVICES Manager, Transmission Services. VP Compliance & Standards

Open Enterprise Architectures for a Substation Password Management System

Protect Your Assets. Cyber Security Engineering. Control Systems. Power Plants. Hurst Technologies

Top Ten Compliance Issues for Implementing the NERC CIP Reliability Standard

Secure Remote Substation Access Solutions

CIP Electronic Security Perimeter (ESP) - Dan Mishra FRCC Compliance Workshop May 09-13, 2011

Information Shield Solution Matrix for CIP Security Standards

Strong Security in NERC CIP Version 5: Unidirectional Security Gateways

ISACA North Dallas Chapter

The North American Electric Reliability Corporation ( NERC ) hereby submits

Physical Security Reliability Standard Implementation

Security Solutions to Meet NERC-CIP Requirements. Kevin Staggs, Honeywell Process Solutions

Building Insecurity Lisa Kaiser

SecFlow Security Appliance Review

Standard CIP Cyber Security Systems Security Management

What Risk Managers need to know about ICS Cyber Security

NERC CIP Compliance. Dave Powell Plant Engineering and Environmental Performance. Presentation to 2009 BRO Forum

NB Appendix CIP NB-1 - Cyber Security Personnel & Training

North American Electric Reliability Corporation. Compliance Monitoring and Enforcement Program. December 19, 2008

Keshav Sarin CIP Enforcement Analyst. BURP (Best User Reporting Practices) February 11, 2011 Marina del Rey, California

Top 10 Compliance Issues for Implementing Security Programs

TRIPWIRE NERC SOLUTION SUITE

GRADUATE RELIABILITY TRAINING PROGRAM. Initiation Date: September 2012

149 FERC 61,140 UNITED STATES OF AMERICA FEDERAL ENERGY REGULATORY COMMISSION. 18 CFR Part 40. [Docket No. RM ; Order No.

Dan T. Stathos, CPA* Associate Director

NERC-CIP S MOST WANTED

Audit-Ready SharePoint Applications

Cyber Security Standards Update: Version 5 with Revisions

TRANSMISSION MAINTENANCE COORDINATION COMMITTEE (TMCC) MINUTES January 16, 2014 Meeting from ISO Headquarters Folsom, California

April 28, Dear Mr. Chairman:

CONCEPTS IN CYBER SECURITY

Technology Solutions for NERC CIP Compliance June 25, 2015

LogRhythm and NERC CIP Compliance

NERC CIP Compliance with Security Professional Services

Security Regulations and Standards for SCADA and Industrial Controls

GE Measurement & Control. Cyber Security for NERC CIP Compliance

Financing government infrastructure projects : the UK experience. David Finlay

THE BLUENOSE SECURITY FRAMEWORK

Cybersecurity Continuous Monitoring at Fermilab. Irwin Gaines NLIT 4 May 2015

NERC CIP VERSION 5 COMPLIANCE

CIP Cyber Security Configuration Change Management and Vulnerability Assessments

The Importance of Cybersecurity Monitoring for Utilities

NERC CIP Version 5 webinar series Change management

NovaTech NERC CIP Compliance Document and Product Description Updated June 2015

FLORIDA DEPARTMENT OF TRANSPORTATION

Cyber Security. Smart Grid

CIP Cyber Security Configuration Change Management and Vulnerability Assessments

Property of NBC Universal

Meeting NERC CIP Access Control Standards. Presented on February 12, 2014

Alberta Reliability Standard Cyber Security Personnel & Training CIP-004-AB-5.1

Cyber Security and Privacy - Program 183

CIP- 005 R2: Understanding the Security Requirements for Secure Remote Access to the Bulk Energy System

PAYMENT CARD INDUSTRY DATA SECURITY STANDARD (PCI) Affordable ~ Clean ~ Safe ~ Simple ~ Flexible

ABB Power Generation Cyber Security Users Group

Draft Information Technology Policy

TRANSMISSION OPERATIONS (August 5, 2010)

Three Simple Steps to SCADA Systems Security

Standard CIP Cyber Security Security Management Controls

When this standard has received ballot approval, the text boxes will be moved to the Guidelines and Technical Basis section of the Standard.

Supporting our customers with NERC CIP compliance. James McQuiggan, CISSP

UNITED STATES OF AMERICA FEDERAL ENERGY REGULATORY COMMISSION

CYBER SECURITY POLICY For Managers of Drinking Water Systems

OFFICE FOR TECHNOLOGY ADMINISTRATION OF CONTRACT CM00664 UNISYS - ENTERPRISE HELP DESK. Report 2005-R-7 OFFICE OF THE NEW YORK STATE COMPTROLLER

IRA Risk Factors Update for CIP. Ben Christensen Senior Compliance Risk Analyst, Cyber Security October 14, 2015

152 FERC 61,198 UNITED STATES OF AMERICA FEDERAL ENERGY REGULATORY COMMISSION. 18 CFR Part 40. [Docket No. RM ; Order No.

Item 3: ERCOT Strategic Goals

Muscle to Protect Your Grid July Sustainable and Cost-effective Muscle to Protect Your Grid

Critical Infrastructure Security: The Emerging Smart Grid. Cyber Security Lecture 5: Assurance, Evaluation, and Compliance Carl Hauser & Adam Hahn

Third Party Security Guidelines. e-governance

Transcription:

NERC CIP Implementation Prepared by David Grubbs City of Garland NERC Critical Infrastructure Protection Committee (CIPC) Municipal Systems are well represented on the NERC CIPC Committee David Grubbs, (Garland) Representing ERCOT David Godfrey, (TMPA) Representing Municipals Nathan Mitchell (APPA) Representing Municipals Rich Powell (JEA) Representing FRCC 1

NERC Critical Infrastructure Protection Standards Compliance with version 1 of the NERC CIP Standards were phased in over the period of June 30, 2008 through December 31, 2009 depending on the registration. On April 1, 2010 version 2 of the NERC CIP Standards replaced version 1. On October 1, 2010 version 3 of the CIP standards replaced version 2. NERC CAN on Remote Access effective October 1, 2010 Future CIP Versions There are currently three new versions of the CIP Standards under development. Version 4 is being developed by the CIP Standards drafting team to replace the current Risk Based Assessment Methodology. Expected to be effective October 1, 2011. NERC Staff is preparing a version to address remote access known as CIP-005-X. Expected to be effective October 1, 2011. The CIP Standards drafting team is developing a complete rewrite of the CIP Standards currently known as CIP-010 and CIP-011 version 1. Identification of assets probably effective in 2012 with an implementation plan of at least 12 months for newly identified assets. 2

Implementation of CIP Standards in Garland Began implementation of initial substation security system in 2004 Most work done by utility personnel rather than contractors. Have changed software vendors for both monitoring and video software since initial system. Lessons Learned Start slowly you will probably change your mind what equipment / software you prefer It requires much longer to install than you will estimate As you add equipment you will eventually have to add staff dedicated to monitoring security equipment and investigating alarms The most utilized security equipment is not that required under CIP 3

Changes to CIP Version 3 Standards Effective October 1. Three changes to requirements in the version 3 CIP Standards CIP-002 R1 added the word its to clarify which assets should be evaluated CIP-006 R 1.6 added the requirement to have a visitor management program including logging g ingress and egress and continuous escort CIP-008 R 1.6 - removal of what FERC thought was not a requirement but an option Version 4 Standards Version 4 of the CIP Standards removes the Risk Based Assessment Methodology and replaces it with bright line criteria. Vote in early November failed. Drafting Team is rewriting prior to the second ballot in December. 4

CIP-005-X NERC is proposing an Urgent Action Standard CIP-005 005-X. Standard addresses all remote access into Critical Cyber Asset networks or devices. The Urgent Action status bypasses most of the Rules of Procedure applicable to Standards d drafting. Standard failed on the first ballot in October. Is being rewritten to be balloted on again in December. NERC CANs-Compliance Compliance Application Notices Clarify the Compliance Committee s interpretation of how auditors should audit Six currently in effect, CAN-0005 is only current one addressing security issues. Effective October 1, 2010. 59 in various stages of drafting. Several address security issues. CAN-0007 draft significantly exceeds existing standards. Read carefully. Many greatly expand beyond the Standards original intent. 5

NERC Alerts Stuxnet Facility Ratings Aurora CIP-010 and CIP-011 All BES facilities are Critical Assets Assets classified into High, Medium and Low criticality Still covers protection of cyber assets only Start preparing paperwork now! Communications diagrams will have to be prepared for all locations. 6

Audits Audits Audits Like many systems we are in a mode of almost continuous audits. Scheduled full audits average every three years. Some are one year, some three, some six years. Because Municipal Utilities remain integrated utilities we are registered for multiple functions (GPL is registered for 8). Larger utilities expect audits every year Self audits are required twice per year for CIP Standards. Once per year for all other Standards. Be Prepared Be prepared to significantly increase your compliance budgets and staff Be prepared to spend more time on documentation and procedures Be prepared to be assessed penalties for NERC and ERCOT violations 7

Questions? 8

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information