AMPYX CYBER

View Original

New Low Impact NERC CIP-003-9 Regulations: Vendor Supply Chain Security

By Patrick Miller

On March 16 2023, FERC issued a new Order approving NERC CIP-003-9 introducing new requirements for vendor electronic remote access security controls to low impact BES Cyber Systems. These new security controls are intended to allow detection and the ability to disable vendor remote access in the event of a known or suspected malicious communication.

Ampere hosed a webinar/webpanel featuring a former CIP regulator and three former asset owners, where they will discuss what is in scope, when it be applicable, how it will impact your utility, and what you should be doing.

Panelists

Show Links

FERC Order Approving Reliability Standard CIP-003-9 - Docket No. RD23-3-00

CIP-003-9 Reliability Standard, NERC

NERC Project 2020-03 Page for all documents related to the drafting and adoption process for CIP-003-09

  • All draft versions

  • Redlines to last posted/approved

  • Technical Rationale

  • VRF/VSL Justifications

  • Reliability Standard Audit Worksheet (RSAW)

  • Ballot results

Supply Chain Risk Assessment Report

Safety Sign Generator

Slides from this webinar/webpanel

Featured Posts

See this gallery in the original post