• Home
  • About Us
  • We Are Different
  • Significant Client Project
  • Training
  • Knowledge
  • Recent FERC & NERC Developments
  • Contact

Are You Ready For Your NERC CIP SPOT CHECK AUDIT? Contact Us Immediately @ 248.981.5248 To Prepare Today!

  • Latest News

  • Insights & Ideas

      Catalyst For Change?
      FERC Demands "Culture of Compliance"

  • Client Login

      Email:
      Password:
      Forgot your password?
      powered by sharefile

  • Services

      CIP Compliance Program Assessment & Implementation
      Risk Based Assessments & Cyber Asset Identification
      Threat & Vulnerability Assessments
      Remediation Solution Design & Implementation
      Compliance Management
      CIP Training & Awareness
      Internal Audit Assistance & Teaming
      Audit Documentation Repository Solutions
      Resource Staffing & Teaming
      Violation Settlement & Legal Counsel Support
      Service

Recent FERC & NERC Developments

NERC CHIEF SECURITY OFFICER, MICHAEL ASSANTE, ISSUE LETTER TO INDUSTRY CONCERNED THAT CRITICAL ASSETS MAY NOT HAVE BEEN PROPERLY IDENTIFIED

On April 7, 2009, NERC issued a letter suggesting that the most recent Self-Certification compliance survey results regarding identification of Critical Cyber Assets, raise concern as only 31% of entities responded to the survey that they had at least one Critical Asset and 23% responded that they had Critical Cyber Assets.  Particular concern was discussed over potential qualifying assets over Generation Owners and Generation Operators, as only 29% reported identifying at least one Critical Asset, and Transmission Owners, fewer than 63% identified at least one Critical Asset.  For additional information, see  http://www.nerc.com/fileUploads/File/News/CIP-002-Identification-Letter-040709.pdf  

FERC Issues Order on Proposed Clarification Regarding Application of CIP Reliability Standards to Nuclear Facilities

On September 18, 2008, the Federal Energy Regulatory Commission (FERC) issued an order proposing to clarify that the facilities within a nuclear generating plant that are not regulated by the U.S. Nuclear Regulatory Commission (NRC) are subject to compliance with the eight mandatory Reliability Standards for Critical Infrastructure Protection that were approved in Order No. 706

In its explanation, FERC indicated its understanding that NRC does not regulate all facilities within a nuclear plant, and proposes to close this “gap” in the regulatory process.  Comments on FERC’s proposed clarification are due within 30 days of Federal Register notice.To read FERC’s summary fact sheet on the proposed clarification, click here  

 

 



Disclaimer

© 2010 All Rights Reserved

Complyant Solutions' Cyber Security Practice is an integrated team of cyber security consultants, information and control systems technology specialists, and legal counsel professionals who focus on the unique needs of responsible entities to protect the reliability of the Bulk-Electric System. Within the Cyber Security Practice, our professionals deliver consulting services, technology solutions, and IT operations with energy industry expertise to manage compliance, audits, and enforcement actions with the National Electric Reliability Corporation (NERC) Critical Infrastructure Protection reliability requirements and reduce the risks to the Bulk-Electric System.

Admin