Presentation is loading. Please wait.

Presentation is loading. Please wait.

NERC AWARENESS TRAINING

Published byMadeleine Casey Modified over 5 years ago

Similar presentations

Presentation on theme: "NERC AWARENESS TRAINING"— Presentation transcript:

1 NERC AWARENESS TRAINING
Annual Refresher Susan Sosbe, COMPLIANCE SS 1/29/18

2 NERC EMPLOYEE TRAINING
Quick Review – What is NERC? Compliance Commitment, Program, Policy Employee Responsibility Review Event Reporting Operating Plan and Procedure For Reporting a Potential Non-Conformance Critical Infrastructure Protection (CIP)

3 NERC EMPLOYEE TRAINING
WHAT IS NERC? North American Electric Reliability Corp. The mission of NERC is to ensure the reliability of the Bulk Electric System (BES) in North America (U.S. and Canada). Under the authority of FERC, NERC enforces the Reliability Standards with all entities who have registered in one (1) or more of the ten (10) industry segments defined by NERC. NERC is the acronym for the NORTH AMERICAN ELECTRIC RELIABILITY CORPORATION. THE MISSION OF NERC IS TO ENSURE THE RELIABILITY OF THE BULK POWER/ELECTRIC SYSTEM IN NORTH AMERICA, WHICH INCLUDES THE U.S., CANADA, AND SMALL PARTS OF MEXICO. NERC gets its authority from THE FEDERAL ENERGY REGULATORY COMMISSION (FERC). Under that authority, NERC enforces the RELIABILITY STANDARDS with ALL Users, Owners, and Operators of the Bulk Power System.

4 NERC EMPLOYEE TRAINING
How Does NERC Apply To Wabash Valley? Reliability Standards are the planning and operating rules that Registered Entities must follow to ensure the most reliable system possible. Compliance is mandatory & enforceable under the scope of NERC’s Regulatory Authority. We must have Procedures and Documentation for each Standard/Requirement/Measure that is applicable to us. Wabash Valley falls under the jurisdiction of two (2) Regional Reliability Organizations (Reliability First Corporation-RF and SERC Reliability Corporation-SERC). RF is the lead Region. Co-ops in Indiana are in the RF Region. Co-ops in Illinois and Missouri are in the SERC Region. Holland Energy, LLC is in the SERC Region.

5 NERC EMPLOYEE TRAINING
How Does NERC Apply To Wabash Valley? Currently, Wabash Valley’s Registrations are: Distribution Provider (DP) – Provides and operates “wires” between the transmission system and the end-use customer. This registration incorporates our Co-ops. Generator Owner (GO) - The entity that owns and maintains generating units. WVPA is the “GO” for the Wabash River Highland Plant (WRHP). NAES is the Generator Operator (GOP) for this facility. We work together to ensure compliance for this facility. WVPA became the GO effective 9/7/11. WVPA is registered as a GO in the RF Region only. Transmission Owner (TO) – Added this registration on in the SERC Region with the acquisition of the BES transmission assets from Citizens Electric Corporation.

6 NERC ANNUAL TRAINING CURRENT JOINT REGISTRATION
Reliability First SERC WHAT ARE THE KEY ELEMENTS OF COMPLIANCE OF THE WVPA AND MEMBER SYSTEM NERC COMPLIANCE PROGRAM? - COMMITMENT to fulfill all responsibilities and requirements under NERC. - It is the responsibility of EVERY WVPA and Member Co-op Employee to follow the Policies, Procedures, and Requirements of the NERC Compliance Program.

7 NERC EMPLOYEE TRAINING
How Does NERC Apply To Wabash Valley? We also share compliance responsibility with Hoosier Energy and with NAES Corporation for Holland Energy, LLC. Holland Energy, LLC is registered as a Generator Owner (GO), and NAES Corporation, Holland, is registered as the Generator Operator (GOP). Compliance Contacts: GO: Primary: Susan Sosbe, WVPA Secondary: Greg Vonfeldt, Hoosier GOP: Kent Schmohe, NAES, Plant Manager

8 NERC EMPLOYEE TRAINING
Commitment To Compliance Wabash Valley is committed to fulfilling all of our responsibilities and requirements under NERC. It is the responsibility of every Wabash Valley Employee to follow the Policies, Procedures, and Requirements of our NERC Compliance Program.

9 NERC EMPLOYEE TRAINING
Compliance Program Goals and Objectives: Ensure that WVPA complies with all applicable NERC, RF, and SERC Reliability Standards, which in turn, supports the goal of reliable and secure power production and supply. Ensure that WVPA is prepared to provide required information and data to RF, SERC, and NERC in order to demonstrate compliance with all applicable Reliability Standards. To continue to build a “Culture of Compliance”.

10 COMPLIANCE POLICY Adopted by the Board of Directors, Rev. 2017 Policy Number B-24

11 NERC ANNUAL TRAINING Co-op Responsibilities
Complete & Return “Equipment Confirmation Form” (annually) Work with WVPA Compliance Manager regarding Policies, Procedures and Compliance/Documentation Associated with NERC Compliance: NERC Compliance Written Plans Conduct Employee Training Sessions (New Employees/Annual Refresher) Express Concerns & Ask Questions About The Program Report Any Potential Non-Compliance Immediately As outlined in the “Event Reporting Operating Plan” required by EOP-004-3, report Events in a timely manner. What Responsibilities do Co-ops have? - Complete and Return the Equipment Confirmation Form on an annual basis. This is part of our evaluation of Special Protection Systems, Underfrequency and Undervoltage Load Shedding Equipment. - Work with the WVPA Compliance Manager regarding Policies, Procedures and Compliance Documentation. - Conduct NERC Training Sessions on an annual basis. - Express any Concerns regarding the Program, and Report any potential Non-Conformance immediately. What is a “non-conformance”? It’s basically, an “oops”, where we didn’t follow a Procedure, such as timely reporting of a Sabotage Event. We must investigate the potential non-conformance and implement corrective actions in order to ensure Compliance.

12 PLANS/PROCEDURES WVPA EVENT REPORTING OPERATING PLAN
Replaces Disturbance Reporting and Sabotage Reporting, effective 1/1/14. Procedure For Reporting A Potential Non-Conformance, Procedure #5064. We have 3 Procedures to review today. You should recognize these from the NERC Training that was conducted last year. Those Procedures are: Sabotage Reporting, Procedure For Reporting a Potential Non-Conformance And, Disturbance Reporting.

13 EVENT REPORTING OPERATING PLAN
Purpose: To outline the Protocol for reporting Events within timelines, and to the Entities, outlined in EOP for BES Facilities. Events will be reported within 24 hours of recognition of meeting a Reportable Event type threshold and within the 1 to 6 hour reporting requirements of DOE, if applicable.

14 EVENT REPORTING OPERATING PLAN
REPORTABLE EVENTS BY EVENT TYPE (Applicable to WVPA) Event Type WVPA Registration Threshold for Reporting Damage or Destruction of a Facility DP, GO, TO Damage or destruction of a Facility that results from actual or suspected intentional human action. Physical Threats to a Facility Physical Threat to a Facility, excluding weather or natural disaster related threats, which has the potential to degrade the NORMAL operation of the Facility. OR suspicious activity or device at a Facility. Loss of Firm Load DP Loss of firm load ≥ 200MW for ≥15 minutes Terrorism Acts Actual or suspected physical or cyber/ communication attacks that could impact electric power system adequacy/reliability as defined by DOE. Vandalism Does not meet definition of terrorism.

15 WVPA REPORTING GUIDELINES BASED UPON EVENT TYPE
Report To Timeline Contact Damage or Destruction of a Facility Local Law Enforcement MISO, RF/SERC, NERC All within 24 hours of recognition See Reporting Procedures by Entity. Physical Threats to a Facility DOE Within 24 hours of recognition 1 hour See Reporting Procedures by Entity. Report to DOE within 1 hour if it meets DOE criteria, such as loss of load. Terrorism Acts Joint Terrorism Task Force (JTTF) – Coordinates resources of federal, state & local law enforcement MISO, RF/SERC, NERC, Within 24 hours of recognition JTTF: 24x7: Reporting Procedures by Entity Vandalism Local/State Police, Sheriff Loss of Load MISO, RF/SERC, NERC ≥200MW DOE ≥300 MW Within 1 hour

16 EVENT REPORTING OPERATING PLAN
Protocol: Contact Susan, Brent, Kari, or Lee. Work with WVPA to complete appropriate documentation (NERC Event Report Form/DOE OE-417). Co-ops use Event Reporting System. Susan will handle reporting to appropriate Entities. Act of Terrorism: Susan will report to the Joint Terrorism Task Force (JTTF). Contacts must be verified annually and verification must be documented (Susan).

17 To outline the steps that internal & external
PROCEDURE FOR REPORTING A POTENTIAL NON-CONFORMANCE Procedure Purpose: To outline the steps that internal & external personnel must follow in order to properly report a potential non-conformance pursuant to NERC Compliance. PLEASE REPORT IMMEDIATELY UPON DISCOVERY!

18 PROCEDURE FOR REPORTING A POTENTIAL NON-CONFORMANCE
Procedure Steps: WVPA Employee, Co-op, or an external entity becomes aware of a potential non-conformance. They report it to one of the following personnel: - WVPA Compliance Manager - WVPA Exec. VP, Transmission & Reg. Affairs - WVPA President/CEO - WVPA Legal Counsel Communication Flow *Depending upon the severity, the WVPA Board of Directors may also be notified. Depending upon circumstance, Co-op Board of Directors may be notified as well.

19 PROCEDURE FOR REPORTING A POTENTIAL NON-CONFORMANCE
Procedure Steps: The WVPA Compliance Manager investigates & documents the potential non-conformance. If the issue is NOT a non-conformance, the WVPA Compliance Mgr. will communicate the status, implement improvement measures, and will retain all documentation. If the issue IS a non-conformance, the WVPA Compliance Mgr. will: Report to the Appropriate Agency & Develop a Mitigation Plan; Implement Corrective Actions; Communicate Status; Retain All Documentation.

20 NERC EMPLOYEE TRAINING
WVPA Compliance Critical Infrastructure Protection (CIP) Standards CIP BES Cyber System Evaluation completed - low impact for both WVPA, WRHP, and Holland Energy. CIP-003-6: Cyber Security Management Controls - Low Impact Requirements: Cyber Security Awareness Program Communications Management support and reinforcement Program shared with Member Cooperatives. Cyber Security Incident Response Identify, classify, respond, reporting of incident. Test every 36 months. JRO Members and applicable facilities included. First exercise of Plan was also completed prior to !

21 NERC CIP UPDATE Critical Infrastructure Protection (CIP) Standards
June 2017: BES Cyber System Evaluation completed - low impact for both WVPA and Holland Energy. CIP-003-6 Low Impact Requirements: Cyber Security Awareness Program Cyber Security Incident Response Exercise, Report, Lessons Learned Cyber Security Policies Leadership Designation Policy Cyber Security Policy Security Management Controls Policy Visitor Management Policy (WVPA & WRHP)

22 NERC UPDATE What’s New With NERC
Critical Infrastructure Protection (CIP) Standards (CIP-003-7) Low Impact Requirements: Physical Security Controls Control physical access based upon need to the asset or the locations of the low impact BES Cyber Systems within the asset, and the Cyber Assets that provide electronic security controls. Electronic Access Controls Permit only necessary inbound and outbound electronic access for specific communication types. Authenticate all Dial-up Connectivity, if any, that provides access to low impact BES Cyber Systems per Cyber Asset capability.

23 NERC UPDATE What’s New With NERC
Critical Infrastructure Protection (CIP) Standards (CIP-003-7) Low Impact Requirements: Transient Cyber Assets and Removable Media Malicious Code Risk Mitigation Implement, except under CIP Exceptional Circumstances, one or more plans to achieve the objective of mitigating the risk of the introduction of malicious code to low impact BES Cyber Systems through the use of Transient Cyber Assets or Removable Media. For Transient Cyber Assets, the use of one or a combination of the following in an ongoing or on-demand manner including Antivirus software, application whitelisting, or other methods. There are additional requirements for joint use. For Removable Media, methods to detect malicious code using a Cyber Asset other than a BES Cyber System; and mitigation of a threat of detected malicious code on the Removable Medium prior to connection to low impact asset.

24 NERC UPDATE What’s New With NERC
Critical Infrastructure Protection (CIP) Standards (CIP-003-7) Low Impact Requirements: Declaring & Responding to CIP Exceptional Circumstances Processes to declare a CIP Exceptional Circumstance Processes to respond to a CIP Exceptional Circumstance Definition of a CIP Exceptional Circumstance as per the NERC Glossary of Terms:

25 NERC CIP UPDATE NERC FINES
2019 (FERC) $10 million – Unidentified Registered Entity 127 Violations of CIP Standards, which posed a serious risk to the security and reliability of the BES. Violations took place from and were identified via self reports and audits. 2018 (WECC) $2.7 Million – Unidentified Registered Entity Violation of CIP Standard CIP-003-3, R4 and R5. Contracted vendor exceeded its authorized access by improperly copying data from Entity’s servers to their own, where it was no longer subject to Entity’s controls – contained Cyber Asset data. 2017: (SERC) $500, Unidentified Registered Entity Violation of CIP & Non-CIP Standards and Requirements (twelve {12} Standards and thirty-three {33} Requirements). Highest Fine to Date 2010: $25 million – FPL.

26 NERC EMPLOYEE TRAINING
QUESTIONS? Please contact: Susan Sosbe, Compliance Manager x 2848

Download ppt "NERC AWARENESS TRAINING"

Similar presentations

NERC Cyber Security Standards Pre-Ballot Review. Background Presidents Commission on Critical Infrastructure Protection PDD-63 SMD NOPR NERC Urgent Action.

NERC Cyber Security Standards Pre-Ballot Review. Background Presidents Commission on Critical Infrastructure Protection PDD-63 SMD NOPR NERC Urgent Action.
Federal Energy Regulatory Commission July 20091 Cyber Security and Reliability Standards Regis F. Binder Director, Division of Logistics & Security Federal.

Federal Energy Regulatory Commission July Cyber Security and Reliability Standards Regis F. Binder Director, Division of Logistics & Security Federal.
Document Categorization Steve Ashbaker Director of Operations Joint Guidance Committee WECC Leadership Annual Training Session Salt Lake City, UT May 6-7,

Document Categorization Steve Ashbaker Director of Operations Joint Guidance Committee WECC Leadership Annual Training Session Salt Lake City, UT May 6-7,
Red Flags Rule BAS Forum August 18, 2010. What is the Red Flags Rule? Requires implementation of a written Identity Theft Prevention Program designed.

Red Flags Rule BAS Forum August 18, What is the Red Flags Rule? Requires implementation of a written Identity Theft Prevention Program designed.
CIP Cyber Security – Security Management Controls

CIP Cyber Security – Security Management Controls
PER-005-2.

PER
PER Update & Compliance Lessons Learned

PER Update & Compliance Lessons Learned
FRCC Fall Compliance Workshop October , 2013

FRCC Fall Compliance Workshop October , 2013
1 PER-005 Update Impact on Operators System Operator Conference April 17-19 and May 1-3, 2012 Columbia, SC Margaret Stambach Manager, Training Services.

1 PER-005 Update Impact on Operators System Operator Conference April and May 1-3, 2012 Columbia, SC Margaret Stambach Manager, Training Services.
Project 2009-01 Disturbance and Sabotage Reporting (Event Reporting) Project Webinar July 30, 2012.

Project Disturbance and Sabotage Reporting (Event Reporting) Project Webinar July 30, 2012.
Allan Wick, CFE, CPP, PSP, PCI, CBCP Chief Security Officer WECC Joint Meeting October 8, 2014.

Allan Wick, CFE, CPP, PSP, PCI, CBCP Chief Security Officer WECC Joint Meeting October 8, 2014.
Gcpud1 CRITICAL INFRASTRUCTURE PROTECTION NERC 1200 CIP 002 - 009 CRITICAL INFRASTRUCTURE PROTECTION NERC 1200 CIP 002 - 009.

Gcpud1 CRITICAL INFRASTRUCTURE PROTECTION NERC 1200 CIP CRITICAL INFRASTRUCTURE PROTECTION NERC 1200 CIP
Cyber Security 2005 ERCOT COMPLIANCE ROLLOUT Lane Robinson Reliability Analyst.

Cyber Security 2005 ERCOT COMPLIANCE ROLLOUT Lane Robinson Reliability Analyst.
Project 2008-06 Cyber Security Order 706 January 10, 2012 Most of the material presented has been compiled from NERC webinars and drafting team meetings.

Project Cyber Security Order 706 January 10, 2012 Most of the material presented has been compiled from NERC webinars and drafting team meetings.
1. 11/26/2012: NERC Board of Trustees adopted CIP v5 CIP-002-5 thru CIP-009-5 CIP-010-1 and CIP-011-1 Version 5 Filing FERC requested filing by 3/31/2013.

1. 11/26/2012: NERC Board of Trustees adopted CIP v5 CIP thru CIP CIP and CIP Version 5 Filing FERC requested filing by 3/31/2013.
BS Information Systems – University of Redlands BS Information Systems – University of Redlands AS Electronic Technology AS Electronic Technology Project.

BS Information Systems – University of Redlands BS Information Systems – University of Redlands AS Electronic Technology AS Electronic Technology Project.
Jeffery J. Gust IOWA INDUSTRIAL ENERGY GROUP FALL CONFERENCE Tuesday, October 14, 2014 MidAmerican Energy Company.

Jeffery J. Gust IOWA INDUSTRIAL ENERGY GROUP FALL CONFERENCE Tuesday, October 14, 2014 MidAmerican Energy Company.
Session 3 – Information Security Policies

Session 3 – Information Security Policies
Network security policy: best practices

Network security policy: best practices
Electric Power Infrastructure: Status and Challenges for the Future Mark Lauby Director, Reliability Assessments and Performance Analysis.

Electric Power Infrastructure: Status and Challenges for the Future Mark Lauby Director, Reliability Assessments and Performance Analysis.

Similar presentations

Ads by Google