From: T&D World
FERC directed NERC to develop rule to improve mandatory reporting of cybersecurity incidents
The Federal Energy Regulatory Commission(FERC) last week directed the North American Electric Reliability Corp. (NERC) to develop, within six-months of the effective date of this final rule, modifications to the Critical Infrastructure Protection Reliability Standards to improve mandatory reporting of cybersecurity incidents, including attempts that might facilitate subsequent efforts to harm reliable operation of the nation’s bulk electric system.
Under the current Critical Infrastructure Protection Reliability Standard CIP-008-5 (Cyber Security – Incident Reporting and Response Planning), incidents must be reported only if they have compromised or disrupted one or more reliability tasks.
Leave a Reply