Search SciPol

Brought to you by
July 24, 2018

FERC Mandates Reporting of Attempted Cybersecurity Breaches

  • Government
  • Agency
  • Industry
  • Energy

Power – The Federal Energy Regulatory Commission (FERC) has ordered the North American Electric Reliability Corp. (NERC) to broaden, within six months, its Critical Infrastructure Protection (CIP) reliability standards to include mandatory reporting of cybersecurity incidents that could harm the bulk electric system (BES).

FERC’s Order No. 848issued on July 19 directs NERC to develop and submit modifications to CIP standards to mandate reporting of cybersecurity incidents that “compromise, or attempt compromise” of an entity’s electronic security perimeter (ESP) or associated electronic access control or monitoring system (EACMS). An ESP is essentially a border surrounding a network to which cyber systems are connected to the grid using a routable protocol. EACMS are cyber assets that control or monitor electronic access of ESP or cyber systems.

Read more at Power.

Energy Subcategory