Enforcement 101 Rachael Ferrin Associate Process Analyst.

Slides:

Advertisements

Similar presentations

WECC Delegation Agreement WECC Board of Directors Meeting December 7-8, 2006.

Advertisements

Document Categorization Steve Ashbaker Director of Operations Joint Guidance Committee WECC Leadership Annual Training Session Salt Lake City, UT May 6-7,

Keshav Sarin Manager, Compliance Risk Analysis

COMPLIANCE 101 Module One.

Frequently Asked Questions Alberta Reliability Standards Compliance Version 1.0 – Effective April 30, 2013 (Please visit the website to download the latest.

1 PER-005 Update Impact on Operators System Operator Conference April and May 1-3, 2012 Columbia, SC Margaret Stambach Manager, Training Services.

Auditing March Introduction Objective Setting the Scene Legislation The Audit Process Outcomes of an Audit Questions March 2014.

CIP Spot Check Process Gary Campbell Manager of Compliance Audits ReliabilityFirst Corporation August, 2009.

[INSERT APPLICABLE REGIONAL ENTITY NAME/LOGO] [ENTITY NAME] [FUNCTION CERTIFYING] Certification [LOCATION] – [DATES OF ON-SITE VISIT] [Presenter Name,

Compliance Application Notice Process Update and Discussion with NERC MRC.

Talk With Texas RE Protocol Compliance Department February 21, 2013.

WECC COMPLIANCE 101 Webinar

Notice of Compliance Audit

Implementing and Enforcing the HIPAA Privacy Rule.

ERCOT Compliance Audits Robert Potts Sr. Reliability Analyst March 23, 2005.

Support Systems and Tools Brittany Power Data Coordinator.

Integrity Management Inspection Process Don Moore, OPS Central Region.

Texas Regional Entity Compliance Report TAC July 9, 2009.

Compliance Enforcement Initiative : Initial Filing and Next Steps October 13, 2011.

1 Arizona Corporation Commission BTA Workshop Presenter: Steven Cobb May 23, 2008.

Compliance Program Implementation Plan 2011 December 15, 2010 Ray Palmieri 1.

[INSERT APPLICABLE REGIONAL ENTITY NAME/LOGO] [ENTITY NAME] [FUNCTION CERTIFYING] Certification Review for [RELATED ENTITIES] [LOCATION] – [DATES OF ON-SITE.

Compliance Performance Measure Proposals and Preliminary Trends Greg Pierce – Chair, Performance Measures Task Force Compliance and Certification Committee.

THE AUDITOR'S RESPONSIBILITIES RELATING TO FRAUD

Procedures and Forms 2008 FRCC Compliance Workshop April 8-9, 2008.

DEPARTMENT OF MANAGEMENT SERVICES OFFICE OF INSPECTOR GENERAL.

SPP.org 1. EMS Users Group – CIP Standards The Compliance Audits Are Coming… Are You Ready?

NERC Data Collection & Coordination. Rules of Procedure: Section 1600 Overview  NERC’s authority to issue a mandatory data request in the U.S. is contained.

Assessing Compliance. 2 NERC Compliance Workshop 11/02/07 Documentation of Compliance with NERC Reliability Standards Jeff Whitmer.

1 Texas Regional Entity 2008 Budget Update May 16, 2007.

Overview of WECC and Regulatory Structure

STATE OF ARIZONA BOARD OF CHIROPRACTIC EXAMINERS Mission Statement The mission of the Board of Chiropractic Examiners is to protect the health, welfare,

Item 5d Texas RE 2011 Budget Assumptions April 19, Texas RE Preliminary Budget Assumptions Board of Directors and Advisory Committee April 19,

Date Meeting Title (optional) Enforcement and Sanctions Presenter Name Presenter Title (Optional)

Reliability Assurance Initiative (RAI) 101 Ben Christensen Senior Compliance Risk Analyst, Cyber Security.

North Carolina Health Information Exchange Governance Workgroup Date: May 12, 2011 Time: 9:00 am – 11:00 am Location: NC Institute of Medicine 630 Davis.

Problem Areas Updates Penalties FRCC Compliance Workshop September / October

Employee Privacy at Risk? APPA Business & Financial Conference Austin, TX September 25, 2007 Scott Mix, CISSP Manager of Situation Awareness and Infrastructure.

Compliance Monitoring and Enforcement Audit Program - The Audit Process.

2011 ReliabilityFirst 693 Compliance Audit Process for 6 Year Audit Cycle Entities Glenn Kaht Senior Consultant - Compliance ReliabilityFirst Corporation.

1 Eleventh National HIPAA Summit The New HIPAA Enforcement Rule Gerald “Jud” E. DeLoss, Esq. General Counsel Fairmont Orthopedics & Sports Medicine, P.A.

WHAT YOU NEED TO KNOW ABOUT NERC ERO COMPLIANCE Louise McCarren Chief Executive Officer – WECC APPA National Conference June 16, 2009 Salt Lake City, Utah.

Compliance Program Update Lisa Milanes Manager of Compliance Administration.

Introduction to the Australian Privacy Principles & the OAIC’s regulatory approach Privacy Awareness Week 2016.

Frequently Asked Questions Alberta Reliability Standards Compliance

Updated ERO Enterprise Guide for Internal Controls

Information Technology Controls

Rachel Coyne Manager, Reliability Standards Program

MAC Board Effectiveness Survey

Compliance Performance Measure Proposals and Preliminary Trends

Training Appendix for Adult Protective Services and Employment Supports June 2018.

Background (history, process to date) Status of CANs

GMD Data Request NERC Rules of Procedure Section 1600

[INSERT APPLICABLE REGIONAL ENTITY NAME/LOGO]

[ENTITY NAME] [FUNCTION CERTIFYING] Certification

[ENTITY NAME] [FUNCTION CERTIFYING] Certification Review

[INSERT APPLICABLE REGIONAL ENTITY NAME/LOGO]

Compliance Enforcement Initiative : Initial Filing and Next Steps

Garret Story, Enforcement Analyst

2019 Draft Budget Overview Jillian Lessner – Chief Financial Officer

Reliability Assurance Initiative (RAI) 101

Notice of Compliance Audit

Support Systems and Tools

2019 Draft Budget Overview Jillian Lessner – Chief Financial Officer

Overview of WECC and Regulatory Structure

MAC Board Effectiveness Survey

CMEP Technology Project

Internal Controls Assessment

Compliance Monitoring Strategy

Standards Development Process

Presentation transcript:

Enforcement 101 Rachael Ferrin Associate Process Analyst

Agenda Possible Violation Information – Submittal and review process for possible violations – Submittal and review process for Mitigation Plans 2

What is a violation? A violation is a failure to demonstrate compliance pursuant to an applicable NERC Reliability Standard Requirement – Possible Violation (PV) The identification by the Compliance Enforcement Authority of a possible failure by a Registered Entity to comply with a Reliability Standard that is applicable to the Registered Entity. NERC Rules of Procedure, Appendix 2 (March 19, 2015). 3

Discovery Methods Self-Reports Self-Certifications New possible violation Change in scope Compliance Audits Spot Checks Compliance Investigations Periodic Data Submittals Complaints Self-Logging 4

Possible Violation Submittal Submit Self-Reports and Self-Certifications via webCDMS Self Report/Self Certification Content Checklist 5

Possible Violation Review WECC Subject Matter Experts (SME) review the “possible violation” Analyze facts and circumstances Data Requests/conference call if necessary Technical assessment – Facts and Timelines – Risk Assessment Recommendation of Dismissal or Acceptance to Enforcement Analysts 6

Entity’s next step after reporting a Possible Violation Mitigating Activities Submit Mitigation Plan or Mitigating Activities – Notice of Alleged Violation triggers Mitigation Plan due date – Timely Mitigation is encouraged – Not an admission of violation 7 Every violation goes through the same process.

Mitigation Plan Submittal Submit via webCDMS – One violation per plan Eight Steps to Prevention and Mitigation Mitigation Plan Content Checklist 8

Mitigation Plan Review WECC Subject Matter Experts (SME) conduct reviews Review the mitigation plan – Actions (Corrective, Detective and Preventive) – Duration Data Requests/conference call if necessary Notice of Acceptance or Rejection via auto notification or EFT server 9

Mitigation Plan Extensions Extension Requests – Accepted Mitigation Plan completion date = date Completion Certification and evidence submitted to WECC – Five business days prior to completion date 10

CMP Submittal Submit Completion Certification and evidence via webCDMS CMP Content Checklist 11

Mitigation Plan Completion Review WECC Subject Matter Experts (SME) conduct reviews Analyze Evidence – Were all actions outlined in the plan completed? – Has both procedural and implementation evidence been submitted? Data Requests/conference call if necessary Notice of Acceptance or Rejection via auto notification or EFT Server 12

Summary Violation life cycle – Submitting violations and mitigation plans – WECC’s review of violations and mitigation plans 13