CIP is just one of 14 mandatory NERC standards that are subject to enforcement in the U.S. However, it gets a good deal of attention because this regulation is centered around the cybersecurity of ...

Our Financial Services and White Collar, Government & Internal Investigations Teams examine the Financial Crimes Enforcement Network’s new ...

RF is an Independence, Ohio-based grid security monitor that assesses compliance with the Federal Energy Regulatory Commission’s Critical Infrastructure Protection (CIP) Standards in 13 Mid ...

Fortress’ Foundations Program provides these utilities with a step-by-step pathway for achieving NERC CIP compliance beginning with Bulk Electric System (BES) cyber security classification (CIP ...

This plan will build the foundation of a sustainable NERC CIP program that will leverage automated and repeatable processes for demonstrating compliance. Begin industrializing key NERC CIP processes.

The multi-year NERC CIP implementation schedule requires that most responsible entities be “auditably compliant” by the end of the second quarter of 2010, or by Dec. 31, 2010, depending on the ...

Under that plan, the Version 4 CIP Reliability Standards will not go into effect as scheduled. Instead, utilities will transition directly from the Version 3 Standards to the Version 5 Standards.

NERC Standards and Implications In June 2006, NERC adopted Cyber Security Standards CIP-002 through 009 specifying the minimum requirements needed to ensure the security of the electronic exchange ...

Let’s examine the CIP standards closer. They include quarterly security awareness, incident response tabletop exercises and protection of sensitive information.

Every time they [NERC] get them done, they seem to go and start the process again.” That was then—CIP version 4. This is now—CIP version 5. Version 4 requires compliance by April 2014.