CIP-015: The Crucial Role of INSM in Strengthening Grid Security

introduction of CIP-015, a new regulation aimed at enhancing grid security by mandating Internal Network Security Monitoring (INSM) for high and medium impact Bulk Electric System (BES) Cyber Systems. This development, initiated by FERC Order No. 887, responds to the need for robust monitoring within trusted network zones to detect and mitigate potential cyber threats. CIP-015 emerges as a standalone standard after industry feedback suggested that INSM requirements did not align well with existing frameworks, shifting towards an objective-based rather than prescriptive approach.

INSMPatrick MillerMarch 27, 2024INSM, Internal Network Security Monitoring, NERC CIP, FERC, FERC 887

NERC's New INSM Regulation: Assessing Impact and Ambiguity

The recent draft release of NERC's new CIP Standard for Internal Network Security Monitoring (INSM) sparks a conversation filled with anticipation and skepticism. With directives from FERC Order 887 echoing in its language, the draft attempts to navigate through the challenges of creating a new regulation to address situations where vendors or individuals with authorized access are considered secure and trustworthy but could still introduce a cybersecurity risk.

INSMPatrick MillerDecember 20, 2023INSM, Internal Network Security Monitoring, NERC CIP

NERC Initiates Data Collection on INSM for Low Impact CIP Assets

NERC has initiated the Internal Network Security Monitoring (INSM) Data Request in response to a directive from FERC. This effort aims to gather data on the risks of not implementing INSM in medium and low impact BES Cyber Systems. NERC is collecting information from utilities in the electric power industry regarding facility numbers, network configurations, malicious code detection, implementation challenges, and alternative solutions. The data must be submitted by July 25, 2023.

INSMPatrick MillerJune 9, 2023INSM, Internal Network Security Monitoring, Low Impact

What to do about FERC's new INSM Order 887

FERC has issued Order 887, directing NERC to create new Critical Infrastructure Protection (CIP) cybersecurity standards for Internal Network Monitoring Systems (INSM). Hear from a real electric utility asset owner, Carter Manucy of FMPA, on what this means for the industry and what you should do next.

INSMPatrick MillerFebruary 8, 2023INSM, Internal Network Security Monitoring

Alexa, can you tell me when my grid is hacked?

A new addition to the NERC CIP regulation is coming for the electric sector requiring anomaly detection and internal network security monitoring to detect active attacks on critical systems.

INSMPatrick MillerJanuary 25, 2023INSM, Internal Network Security Monitoring

The importance of network segmentation for critical infrastructure

Network Segmentation - creating specialized, highly-protected network segments for critical systems - can provide necessary isolation and defense against ransomware and other attacks on critical infrastructure.

INSMPatrick MillerMay 11, 2022INSM, Internal Network Security Monitoring

Internal network security monitoring for visibility

Internal Network Security Monitoring (INSM) - visibility into what’s happening on your internal OT/ICS networks - is showing up in important places like the National Security Memorandum, CISA guidance and FERC rulemaking notices.

INSMPatrick MillerApril 25, 2022INSM, Internal Network Security Monitoring

Ampyx Cyber Blog

Social & other feeds

Contact information

Site Navigation