Standards and Guidelines Working Group Status Updates 2005 Jun 09 Washington DC Critical Infrastructure Protection Committee Public Release.

Slides:

Advertisements

Similar presentations

NERC Cyber Security Standards Pre-Ballot Review. Background Presidents Commission on Critical Infrastructure Protection PDD-63 SMD NOPR NERC Urgent Action.

Advertisements

Document Categorization Steve Ashbaker Director of Operations Joint Guidance Committee WECC Leadership Annual Training Session Salt Lake City, UT May 6-7,

Reliability Center Data Request Task Force Report WECC Board Meeting April 2009.

NERC Critical Infrastructure Protection Advisory Group (CIP AG) Electric Industry Initiatives Reducing Vulnerability To Terrorism.

NERC PC Issues Update WECC PCC Meeting John Simpson, RRI Energy Planning Coordination Committee Seattle, WA June , 2010.

STATUS OF BULK ELECTRIC SYSTEM DEFINITION PROJECT

CIP Cyber Security – Security Management Controls

Recent NERC Standards Activities RSC – Jan. 5, 2011 NSRS Update Date Meeting Title (optional)

Copyright 2010, The World Bank Group. All Rights Reserved. Statistical Project Monitoring Section B 1.

Project Cyber Security Order 706 January 10, 2012 Most of the material presented has been compiled from NERC webinars and drafting team meetings.

Editing, Peer-Reviewing and Team-Writing Editing isn’t a cosmetic process. It’s a thinking process. Richard Rhodes, author Making of the Atomic Bomb.

GOP and QSE Relationship Jeff Whitmer Manager, Compliance Assessments Talk with Texas RE June 25, 2012.

Update: Physical Guideline UPDATE: Physical Security Guideline UPDATED Physical Response Security Guideline Public Release.

Lisa Wood, CISA, CBRM, CBRA Compliance Auditor, Cyber Security

Nuclear Power Plant/Electric Grid Regulatory Coordination and Cooperation - ERO Perspective David R. Nevius and Michael J. Assante 2009 NRC Regulatory.

1 Remote Access Update ReliabilityFirst CIP Webinar Thursday, September 30, 2010 Lew Folkerth, Senior Engineer - Compliance.

New Grants Model Document Retention 1 District 5240 Grants Document Retention District Assembly /6/2013.

Security Guidelines Working Group Update CIPC Meeting Phoenix, AZ Mar 16, 2006 Seiki Harada SGWG Chair CIPC Confidentiality: Public Release.

Implementing the New Reliability Standards Status of Draft Cyber Security Standards CIP through CIP Larry Bugh ECAR Standard Drafting Team.

1 Crisis Response Task Force (CRTF) Proposal Tom Bowe (Chairman) CSO, PJM Interconnection Scott Heffentrager (Temp. Chairman) Physical Security.

October Training 8 HR Ref. Content Overhead Utilities Risk Assessments Task Safety Environmental Analysis Health and Safety Plan Components of a HASP Questions?

The Global Fund - Proposal Process & Round 8 February 19, 2008.

Executive Session Director’s CD-3b Review of the MicroBooNE Project January 18, 2012 Dean Hoffer.

Recommended Draft Policy ARIN Out of Region Use.

Executive Session Director’s CD-1 Review of the LBNE Project September 25, 2012 Jim Yeck.

September 25, 2008 Public ERCOT Critical Infrastructure Protection Advisory Group (CIP AG) TASOR TF Update Jim Brenton, CISSP CISM Director of Security.

Project – Alignment of Terms WECC Joint Meeting July 15, 2015.

Practice Standard for Scheduling Project Manager’s Meeting Status April 28, 2004 Project Manager – Douglas Clark, CEO of Métier.

Standards Review Subcommittee Update August 17, 2010.

NERC and ESISAC Electricity Sector Information Sharing and Analysis Center Update March 2006 CIPC Confidentiality: Public Release.

Page 1 of 13 Texas Regional Entity ROS Presentation April 16, 2009 T EXAS RE ROS P RESENTATION A PRIL 2009.

Department of Education Race to the Top Assessment Program January 14, 2009 Public Meeting Procurement Issues Mark D. Colley 555 Twelfth Street, NW. Washington,

DEX Publication Project OASIS PLCS TC Telecon 22 January 2008 Trine Hansen.

CIPC Executive Committee Update-1 CIPC Meeting Long Beach CA March 17, 2005 Pat Laird Vice Chair Public Release.

Security Guidelines Working Group Update CIPC Meeting Denver CO September 29, 2005 Seiki Harada SGWG Chair Public Release.

Company LOGO. Company LOGO PE, PMP, PgMP, PME, MCT, PRINCE2 Practitioner.

Implementing Program Management Standards at Duke Energy.

Doc.: IEEE Submission March, 2014 Pat Kinney, Kinney ConsultingSlide 1 Project: IEEE P Working Group for Wireless Personal Area.

Project Operating Guide. Purpose of Projects To advance the mission of the organization To provide value to ICIS Members.

ROS Meeting – 06/12/081Texas Nodal Program - TPTF Update Texas Nodal Transition Plan Task Force ROS Meeting Stacy Bridges, ERCOT Thursday, 06/12/08.

USDA 2016 Financial Management Training Transforming Shared Services Change Management Presented by Ron Gros.

1 Presented by David Thompson, TIA December 14, 2005 NFPA 1600 and Emergency Communications.

TASOR TF Report to TAC Dec. 4, 2008.

Computerized Systems in Clinical Research

Outcome TFCS-11// February Washington DC

How does a Requirements Package Vary from Project to Project?

Status report on the activities of TF-CS/OTA

Standards and Certification Training

NERC Cyber Security Standards Pre-Ballot Review

Outcome TFCS-11// February Washington DC

CIPC Outreach WG Update March 2006

CIPC Relationships & Roles

Role for Electric Sector in Critical Infrastructure Protection R&D

NERC Critical Infrastructure Protection Advisory Group (CIP AG)

CIPC Executive Committee Update-1

Security Guidelines Working Group Update

Progress Report on proposed GUID on Information System Security Audit

NERC Critical Infrastructure Protection Committee (CIPC) Executive Committee Public Release 29 September 2005.

Critical Infrastructure Protection Committee

MODULE B - PROCESS SUBMODULES B1. Organizational Structure

Group Meeting Ming Hong Tsai Date :

NERC Reliability Standards Development Plan

UPDATE: Physical Security Guideline

Crisis Response Task Force (CRTF) Proposal

Security Guidelines Working Group Update

CIPC Executive Committee Report-2

NERC Reliability Standards Development Plan

Standards Development Process

NERC Planning Committee Update

Standards Review Subcommittee Update

Presentation transcript:

Standards and Guidelines Working Group Status Updates 2005 Jun 09 Washington DC Critical Infrastructure Protection Committee Public Release

Update Items As of 2005 Jun 09 Subject Area:Min: 1SGWG Objectives for 2005/ Confirmation5 2SGWG Process Flow and Decision Making5 3Review of CIPC Document Types10 4SAC Standard Documents and CIPC Document Types5 5Guideline Template & Usage Guide5 6Accumulation and Handling of Comments for the Next Round of Guideline Updates 5 7Status of Guideline Reviews and Updates5

SGWG Objectives for 2005/ Secure endorsement for the standard document shell for CIPC guidelines 2.Identify CIPC document types and define as to purpose, application rules, relationships with other documents 3.Review existing guidelines and recommend for updating or discontinuance 4.Recommend streamlining of reviewing and approving CIPC guidelines 5.On-going reviews of guidelines and other documents

SGWG Document Review Process Flow

SGWG Main Function: 1.Provide standard format for CIPC documents. 2.Review DRAFTS for: Standard Components Consistency References Tone of language 3.Will stay away from value judgment on the content. That will be left with the drafting teams.

Potential CIPC Document Types for SGWG Reviews Type:Example:SGWG Review: 1PoliciesSpare Equipmt Database (SED)?? 2StandardsCIP 001 to CIP 009No. 3GuidelinesRisk Assessment GuidelinesFormat only 4FAQsFAQ Cyber Security DRAFT #3No? 5Glossary of Terms BES (Bulk Electric System)Scan existing when shifted 6ProcedureSED Usage ProcedureFormat only? 7Reference (or White Paper) Risk Assessment Methodologies No.

SGWG Review of White/Reference Papers RAWG has produced a White Paper on Risk Assessment Methodologies Discussion Points: 1.Does SGWG need to review White Papers and reference documents, or do SGWG members join the general CIPC members in providing comments? 2.If SGWG did, what value can SGWG add? SGWG Consensus: SGWG will not get involved in the reviews of White papers. However, it may act as an unofficial proof reader.

SAC Document Types and CIPC Guidelines SAC announced a list of supporting documents that support “Standards”: 1.Standard Reference 2.Standard Supplement 3.Procedure 4.Practice 5.Training Reference 6.Technical Reference 7.White Paper Discussion Points: 1.There is no such document as ‘guidelines’ 2.CIPC has guidelines without supporting standards. 3.Does NERC recognize “guidelines”?

The Guideline Template Refer to the two Word documents: “Guideline Template” “Usage Guide” Discussion Points: 1.Document ID for Guidelines 2.Preamble (See next foil) 3.Guideline Statement and Guideline Details 4.Definitions (treat Global and Local differently) 5.Certified Products (eliminated) 6.Exceptions (eliminated)

Review of the Guideline Template Preamble: “ This Guideline addresses potential risks that can apply to some Electricity Sector Organizations and provides practices that can help mitigate the risks. Each organization decides the risk it can accept and the practices it deems appropriate to manage its risk.” Why the capitalization?

The Guideline Template Usage Guide Usage Guide provides a description of: What information to provide in which section of a CIPC guideline What tone of language to use Decision Requested: CIPC approve the: 1.Guideline Template 2.Template Usage Guide

Status of Document Reviews SGWG members reviewing existing guidelines: 1.Reviewed 10 guidelines in March more being reviewed Discussion Points: Most of the reviewed guidelines need updating and are being assigned to the originating team or individuals.

Accumulation of Guideline Comments: A CIPC member asked what to do with the comments he or she might come up in between document update cycles. SGWG Consensus: 1.SGWG recommends these comments be sent to the SGWG Chair who will identify the working/task team/individual responsible for the document, pass on the comment, and let the comment originator know.

Reviews of the Recent Document DRAFTS: SGWG Review comments passed to the drafters of: 1.Threat Alert System and Physical Response Guidelines for the Electric Sector - V Vulnerability and Risk Assessment V2 - Guideline 3.Spare Equipment Database Usage Guide - Procedure