NERC Critical Infrastructure Protection Advisory Group (CIP AG)

Slides:



Advertisements
Similar presentations
NERC Cyber Security Standards Pre-Ballot Review. Background Presidents Commission on Critical Infrastructure Protection PDD-63 SMD NOPR NERC Urgent Action.
Advertisements

NERC Critical Infrastructure Protection Advisory Group (CIP AG) Electric Industry Initiatives Reducing Vulnerability To Terrorism.
Recent NERC Standards Activities RSC – Jan. 5, 2011 NSRS Update Date Meeting Title (optional)
1 Pipeline Security Presented to: Pipeline Safety Trust New Orleans, Louisiana November 5, 2010.
WebCast 5 May 2003 NERC Cyber Security Standard Overview of Proposed Cyber Security Standard.
Cyber Security 2005 ERCOT COMPLIANCE ROLLOUT Lane Robinson Reliability Analyst.
Smart Grid - Cyber Security Small Rural Electric George Gamble Black & Veatch
Jeffery J. Gust IOWA INDUSTRIAL ENERGY GROUP FALL CONFERENCE Tuesday, October 14, 2014 MidAmerican Energy Company.
Complying With The Federal Information Security Act (FISMA)
Resiliency Rules: 7 Steps for Critical Infrastructure Protection.
Update: Physical Guideline UPDATE: Physical Security Guideline UPDATED Physical Response Security Guideline Public Release.
Lisa Wood, CISA, CBRM, CBRA Compliance Auditor, Cyber Security
National Incident Management System 5-Year Training Plan Al Fluman, Acting Director Incident Management Systems Division (IMSD), National Integration Center.
Overview of NIPP 2013: Partnering for Critical Infrastructure Security and Resilience October 2013 DRAFT.
Nuclear Power Plant/Electric Grid Regulatory Coordination and Cooperation - ERO Perspective David R. Nevius and Michael J. Assante 2009 NRC Regulatory.
ACADs (08-006) Covered Keywords Commission, regulation, advisory, standards. Description This presentation provides general information about each of the.
Integration of Variable Generation Task Force Preliminary Conclusions and Actions.
Implementing the New Reliability Standards Status of Draft Cyber Security Standards CIP through CIP Larry Bugh ECAR Standard Drafting Team.
Certification and Accreditation CS Phase-1: Definition Atif Sultanuddin Raja Chawat Raja Chawat.
Overview of WECC and Regulatory Structure
Status Report for Critical Infrastructure Protection Advisory Group
Role for Electric Sector in Critical Infrastructure Protection R&D Presented to NERC CIPC Washington D.C. June 9, 2005 Bill Muston Public Release.
Item 5d Texas RE 2011 Budget Assumptions April 19, Texas RE Preliminary Budget Assumptions Board of Directors and Advisory Committee April 19,
Disaster Recover Planning & Federal Information Systems Management Act Requirements December 2007 Central Maryland ISACA Chapter.
WebCast 5 May 2003 Proposed NERC Cyber Security Standard Presentation to IT Standing Committee Stuart Brindley, IMO May 26, 2003.
1 RIC 2009 Nuclear Power Plant/Electric Grid Regulatory Coordination and Cooperation George Wilson NRR/ADES/DE/EEEB March 11, 2009.
The Electric Reliability Organization: Getting from here to there. Gerry Cauley Director, Standards ERO Project Manager ERO Slippery Slope NERC Today Uphill.
Unclassified  1 Critical Infrastructure Protection Chuck Whitley EMS User’s Group June 9, 1999.
Employee Privacy at Risk? APPA Business & Financial Conference Austin, TX September 25, 2007 Scott Mix, CISSP Manager of Situation Awareness and Infrastructure.
NFPA 1600 Disaster/Emergency Management and Business Continuity Programs.
NERC and ESISAC Electricity Sector Information Sharing and Analysis Center Update March 2006 CIPC Confidentiality: Public Release.
November 2, 2006 LESSONS FROM CIPAG 1 Lessons from Critical Infrastructure Group Bill Bojorquez November 2, 2006.
Craig Williams Market Interface Manager August 21, 2014 ISAS, Portland, OR.
Overview July 2011 INMM Nuclear Security and Physical Protection Technical Division.
SEC 480 assist Expect Success/sec480assistdotcom FOR MORE CLASSES VISIT
1 Presented by David Thompson, TIA December 14, 2005 NFPA 1600 and Emergency Communications.
Regional Implications of the Clean Power Plan Lanny Nickell Midwest Energy Policy Conference October 6 th,
Reliability Standard TPL Transmission System Planned Performance for Geomagnetic Disturbance Events September 28, 2016 TPL Standard Status.
Risks and Hazards to Consider Unit 3. Visual 3.1 Unit 3 Overview This unit describes:  The importance of identifying and analyzing possible hazards that.
NRC’s 10 CFR Part 37 Program Review of Radioactive Source Security
Community Health Centers of Arkansas Hazard Vulnerability Assessment Workshop August 11, 2017 Mark Fuller.
Iowa Communications Alliance
CMS Policy & Procedures
Planning Geomagnetic Disturbance Task Force (PGDTF) Update to the ROS
ERCOT Technical Advisory Committee June 2, 2005
Office of Nuclear Materials Safety and Safeguards
MAC Board Effectiveness Survey
ESSENTIALS OF A PHYSICAL SECURITY SYSTEMS RISK ASSESSMENT
NERC Cyber Security Standards Pre-Ballot Review
NRC Cyber Security Regulatory Overview
America’s First National Critical Infrastructure Exercise
Understanding Existing Standards:
CIPC Relationships & Roles
Critical Infrastructure Protection Committee Report to NERC Standing Committees in Joint Session Long Beach, CA March 2005 Public Release.
Role for Electric Sector in Critical Infrastructure Protection R&D
Proposed RISC 2014 Deliverables, Activities, and Calendar
NERC Cyber Security Standard
The Electric Reliability Organization: Getting from here to there.
Reliability Standards Development Plan
Enhanced alerting and collaborative incident management
Critical Infrastructure Protection Committee
Introduction to: National Response Plan (NRP)
Group Meeting Ming Hong Tsai Date :
NERC Reliability Standards Development Plan
Larry Bugh ECAR Standard Drafting Team Chair June 1, 2005
UPDATE: Physical Security Guideline
Securing Critical Chemical Assets: The Responsible Care® Security Code
What Is VQIP? FDA required to establish a program to provide for the expedited review of food imported by voluntary participants. Eligibility is limited.
CIPC Executive Committee Report-2
NERC Reliability Standards Development Plan
Presentation transcript:

NERC Critical Infrastructure Protection Advisory Group (CIP AG) Electric Industry Initiatives Reducing Vulnerability To Terrorism Add notes

September 11, 2001 Industry Implications Significant change to the Security Environment Increased Security focus and costs Threat of imposed Federal and State legislation Company over-reaction Company under-reaction

Post 9/11 Reactions

CIP AG Overview

Security Guidelines Guiding Principles Each company defines and identifies its own critical facilities and functions. Each company assesses the usefulness of the Guidelines individually and adapts them as needed. The Guidelines are living documents, expected to change. Implemented and supported by workshops for industry

Initiatives CIPAG Security Guidelines Threat Conditions and Response FERC Assist Spare Parts Database PKI

Security Guidelines Executive Summary The Guidelines describe general approaches considerations practices planning philosophies The Guidelines are NOT a “cookbook” for protection.

Security Guidelines Definitions Critical Facility Any facility or combination of facilities, if severely damaged or destroyed would: have a significant impact on the ability to serve large quantities of customers for an extended period of time, have a detrimental impact to the reliability or operability of the energy grid, or cause significant risk to National security, National economic security, or public health and safety.

Security Guidelines Guideline Topics Vulnerability and Risk Assessment Threat Response Emergency Management Continuity of Business Processes Communications Physical Security IT/Cyber Security Employment Screening Protecting Sensitive Information

Security Guidelines Guideline Topics Vulnerability and Risk Assessment Helps identify critical facilities, their vulnerabilities, and countermeasures. Threat Response Helps in developing plans for enhanced security.

Security Guidelines Guideline Topics Emergency Management Better prepares companies to respond to a spectrum of threats, both physical and cyber. Continuity of Business Practices Reduces the likelihood of prolonged interruptions and enhances prompt resumption of operations after interruptions occur.

Security Guidelines Guideline Topics Communications Enhances the effectiveness of threat response, emergency management, and business continuity plans. Physical /Cyber Security Mitigates the impact of threats through deterrence, prevention, detection, limitation, and corrective action.

Security Guidelines Guideline Topics Employment Screening Provides strategies to mitigate “insider” threats. Protecting Sensitive Information Production, storage, transmission, and disposal of both physical and electronic information

Security Guidelines Reference Documents An Approach to Action for the Electricity Sector (NERC, June 2001) Threat Alert Levels and Physical Response Guidelines (NERC, November 2001) Threat Alert Levels and Cyber Response Guidelines (NERC, March 2002)

ThreatCon and Response Guidelines The Guidelines Define Threat Alert Levels for Alerts issued by ES-ISAC NIPC Other government agencies (Excludes facilities regulated by the NRC) Ensure that electric Threat Alert Levels are consistent with information from other sources Provide examples of security measures Supported with workshops

ThreatCon and Response Guidelines Threat Alerts / Threat Conditions Can be issued for a specific geographic area for a specific facility by category - such as a specific type of facility

Threat Alert Level Definitions THREATCON-NORMAL Applies when no known threat exists. Is equivalent to normal daily conditions. Security measures should be maintainable indefinitely. THREATCON-LOW Applies when a general threat exists with no specific threat directed against the electric industry. Additional security measures are recommended. Added security should be maintainable for an indefinite period with minimum impact on the organization.

Threat Alert Level Definitions THREATCON-MEDIUM Applies with increased or more predictable threat to the electric industry. Implementation of additional security measures is expected. Increased measures are anticipated to last for a defined time. Significant increases in corporate resources will be required. THREATCON-HIGH Applies when an incident occurs or a credible threat is imminent. Maximum security measures are necessary and are expected to: cause hardships on personnel, seriously impact normal operations, and may be economically unsustainable for more than a short time.

FERC Request FERC requested NERC to develop security standards for inclusion to Standard Market Design NOPR CIPAG picked-up the Gauntlet NERC BoT approved CIPAG participation on June 14, 2002

FERC Request “Minimum Daily Requirements” Achievable Granular Cyber focused Inter-connection focused

FERC Request Final draft to FERC July 26 SMD NOPR released July 31 for general public review, comment Final SMD ruling late October or early November Effective date of compliance 2004 Annual signed self certification

FERC Request All future standards to be developed and maintained by NERC All future FERC rule making on standards will refer to NERC standards

Spare Equipment Database Expanding database created in 1989 Spare EHV transformers in case of national emergencies Web based on a secure server Other equipment to be included

PKI Needed because of the reliance on computer based systems and applications Evaluate potential Certificate Authorities Develop an integrated PKI architecture and deployment strategy Resolve technical issues Create web based training materials

ES ISAC PDD #63 Identified electricity as on e of the eight critical infrastructures NERC sector coordinator for electricity IAW Program Website CIPAG oversight body for ISAC Collect, Analyze and Disseminate information

Pulling Together

Available on the Web www.nerc.com Committees CIPAG Related Files

“Security is always excessive until it’s not enough” One Last Thought! “Security is always excessive until it’s not enough”