Explore the latest changes to NERC CIP Reliability Standards in this informative webinar led by Jason Christopher and Tim Conway. Gain insights into new reporting requirements for security incidents, considerations for virtualization, and changes to control center communications. Delve into topics such as utility and regulatory perspectives, definitions, incident reporting and response planning, securing real-time communications between control centers, and supply chain risk management. Learn about the National Cybersecurity and Communications Integration Center (NCCIC) and its role in cybersecurity. Understand the implementation and review processes for cyber security risk management plans in the electric sector.
NERC CIP Reliability Standards - New Requirements and Compliance Strategies
Dragos: ICS Cybersecurity via YouTube
Overview
Syllabus
Intro
THE ELECTRIC SECTOR AN INTRODUCTION
UTILITY PERSPECTIVES
REGULATORY PERSPECTIVES
Definitions
R4 - Notifications and Reporting for Cyber Security Incidents
National Cybersecurity and Communications Integration Center - NCCIC The NCCIC has a history stemming from many legacy organizations and is comprised of four
CIP-008-6 Incident Reporting and Response Planning (2018-02 SDT)
RI Securing Real-time Comms between Control Centers - eff. 7/1/2022
Reference Model: Control Centers in Scope
RI Documented Processes and Procurement Plan R1.1 - Acknowledge there is a Concern in Procurement • Identify and document cyber security risks related to
Help With RI.I - NIST Supply Chain Risk Management Guidance
R2 and R3 Implement and Review • R2 - Implement supply chain cyber security risk management plan(s) Does not require renegotiation of existing contracts nor does the requirement
Taught by
Dragos: ICS Cybersecurity
