Posts tagged Low Impact
NERC Initiates Data Collection on INSM for Low Impact CIP Assets
NERC Initiates Data Collection on INSM for Low Impact CIP Assets

NERC has initiated the Internal Network Security Monitoring (INSM) Data Request in response to a directive from FERC. This effort aims to gather data on the risks of not implementing INSM in medium and low impact BES Cyber Systems. NERC is collecting information from utilities in the electric power industry regarding facility numbers, network configurations, malicious code detection, implementation challenges, and alternative solutions. The data must be submitted by July 25, 2023.

Read More
INSMPatrick MillerINSM, Internal Network Security Monitoring, Low Impact
New Low Impact NERC CIP-003-9 Regulations: Vendor Supply Chain Security
New Low Impact NERC CIP-003-9 Regulations: Vendor Supply Chain Security

On March 16 2023, FERC issued a new Order approving NERC CIP-003-9 introducing new requirements for vendor electronic remote access security controls to low impact BES Cyber Systems. These new security controls are intended to allow detection and the ability to disable vendor remote access in the event of a known or suspected malicious communication.

Read More
NERC CIPPatrick MillerNERC CIP, CIP-003, Low Impact