On May 23, 2024, FERC approved the North American Electric Reliability Corporation’s (“NERC”) proposed Critical Infrastructure Protection (“CIP”) Reliability Standard, CIP-012-2 (Cyber Security – ...

For the second time in less than a year, the North American Electric Reliability Corporation (NERC) has imposed a six-figure penalty on a participant in the electric market for fundamentally failing ...

A power interruption could happen as a result of a malicious attack, an act of cyber-terrorism or simply an innocent mistake. No matter what the cause, the North American Electric Reliability ...

A few weeks ago I wrote about the anticipated positive aspects of NERC CIP 011. I received comments and questions about timing of approval and implementation, as well as a request to briefly clarify ...

The North American Electric Reliability Corporation Critical Infrastructure Protection standards govern the critical infrastructure of all entities that materially impact the reliability of the bulk ...

Any discussion around security and how much is good enough for utilities is framed by standards, how well those standards are implemented, and risk. In the U.S., the security of the electric utility ...

The North American Electric Reliability Corp. (NERC) Reliability Standards are under constant revision even while new requirements are under active development. As noted in the last NERC Critical ...

Dragos Platform Fulfills INSM Requirements to Monitor and Protect Critical Electric Infrastructure, Enabling Electric Utilities to Benefit from Early Adoption Incentives HANOVER, Md.--(BUSINESS WIRE)- ...

Last week I asked if electrical utilities’ IT security is de facto guaranteed by compliance with the NERC CIP standard. With no disrespect whatsoever intended towards NERC or their CIP standard, I ...

NERC-CIP-014 — largely created as a guideline for the protection of North American electric power substations from physical attack — is intended as a best practices blueprint for the guidance of not ...

The provisionally-approved CIP V5 standards address a wider spectrum of cyber-security technologies than were addressed in previous versions, and in particular the draft V5 standards address and ...