- Jul 22, 2021 2:57 pm GMT
NERC's reliability standards (BAL, FAC, et al) are superior, i.e. "the gold standard" when it comes to ensuring a reliable electric system and the lessons learned that NERC provides continue to help educate our grid operators with "new knowledge" that needs to be considered in order to maintain grid reliability and resiliency. My compliments to NERC for their superior service and guidance that has produced the reliable electric grid that we all depend on, every day.
IMO, NERC's Cybersecurity (CIP) standards leave lots of room for improvements. Our Nations cybersecurity of the electric system would greatly improve by assigning one of the US Government Cybersecurity Expert agencies, (i.e. CISA) to lead electric grid cybersecurity requirements and leave the enforcement of these "CISA CIP" standards with NERC regional entities. NERC Regional entities would would still need continue to serve an important role in the development of these Cybersecurity standards under a CISA administered program. IMO, this would improve Grid Cybersecurity protections with a more "security minded focus" provided by CISA experts and less so on simply "meeting compliance and documentation requirements", as the current CIP standards do. The CIP standards represent "bare minimum requirements" when it comes to applying actual security controls as recommended by NIST, CISA and other Cybersecurity Experts.
No discussions yet. Start a discussion below.
Get Published - Build a Following
The Energy Central Power Industry Network is based on one core idea - power industry professionals helping each other and advancing the industry by sharing and learning from each other.
If you have an experience or insight to share or have learned something from a conference or seminar, your peers and colleagues on Energy Central want to hear about it. It's also easy to share a link to an article you've liked or an industry resource that you think would be helpful.