In late 2018, the Federal Energy Regulatory Commission (FERC) published a final rule updating and adding to the Critical Infrastructure Protection (CIP) Reliability Standards, which are intended to help protect the bulk electric system (BES) in North America against cybersecurity risks. The final rule:

  • Creates a new Supply Chain Risk Management Reliability Standard (CIP-013-1)
  • Updates the Electronic Security Perimeter(s) Reliability Standard (CIP-005-6)
  • Updates the Configuration Change Management and Vulnerability Assessments Reliability Standard (CIP-010-3)

Organizations subject to the Reliability Standards have until July 1, 2020, to develop and implement the necessary policies, procedures, and systems to meet these new obligations.

To read the full article, click here.