Project 2018-02 Modifications to CIP-008 Cyber Security Incident Reporting

Related Files

Status

The 8-day final ballot for CIP-008-6 - Cyber Security — Incident Reporting and Response Planning concluded 8 p.m. Eastern, Tuesday, January 22, 2019. The voting results can be accessed via the link below. The standard will be submitted to the Board of Trustees for adoption and then filed with the appropriate regulatory authorities.

Background
The purpose of this project is to address the directives issued by FERC in Order No. 848 in order to augment mandatory reporting of Cyber Security Incidents, including attempts that might facilitate subsequent efforts to harm the reliable operation of the Bulk Electric System (BES).  FERC directed NERC to develop and submit modifications that would “require the reporting of Cyber Security Incidents that compromise, or attempt to compromise, a responsible entity's Electronic Security Perimeter (ESP) or associated Electronic Access Control or Monitoring Systems (EACMs)."

Standard(s) Affected CIP-008-5

Project Scope
The Reliability Standard(s) developed or revised will include the 4 elements outlined by FERC:

1. Responsible entities must report Cyber Security Incidents that compromise, or attempt to compromise, a responsible entity's ESP or associated EACMS;

2. Required information in Cyber Security Incident reports should include certain minimum information to improve the quality of reporting and allow for ease of comparison by ensuring that each report includes specified fields of information;

3. Establish deadlines for filing Cyber Security Incidents that are commensurate with incident severity; and 

4. Cyber Security Incident reports should be sent to the Electricity Information Sharing and Analysis Center (E-ISAC) and the Department of Homeland Security (DHS) Industrial Control Systems Cyber Emergency Response Team (ICS-CERT
).


Draft

Actions

Dates

Results
Consideration of Comments


Final Draft​

CIP-008-6
Clean | Redline to Last Posted | Redline to Last Approved

Implementation Plan
Clean | Redline to Last Posted

Supporting Materials

VRF/VSL Justification
Clean | Redline to Last Posted

Technical Rationale

Implementation Guidance

Reliability Standard Audit Worksheet

Consideration of Issues and Directives






​Final Ballot

Info

Vote







​01/15/19 - 01/22/19

 

 

 

Ballot Results

Draft 2

CIP-008-6
Clean | Redline to Last Posted

Implementation Plan
Clean | Redline to Last Posted

 

Supporting Materials

Unofficial Comment Form (Word)

VRF/VSL Justifications
Clean | Redline to Last Posted

 Technical Rationale

 Implementation Guidance

 

Additional Ballot and Non-binding Poll

Updated Info

Info

Vote

 

 

11/20/18 - 11/29/18




Ballot Results


Non-binding Poll Results

Comment Period

Info

Submit Comments

 

 

 

11/15/18 - 11/29/18​



Comments Received


Consideration of Comments​



Draft 1


CIP-008-6
Clean | Redline to Last Approved
 
Implementation Plan 

 

Supporting Materials
 
Unofficial Comment Form (Word)

 
VRF/VSL Justification

Consideration of Issue and Directives

Technical Rationale 


Initial Ballot and Non-binding Poll

Updated Info

Info

Vote




10/18/18 - 10/22/18

 

Ballot Results

Non-binding Poll Results


Comment Period

Info

Submit Comments


10/03/18 - 10/22/18

 

Comments Received​

 

Consideration of Comments​



Join Ballot Pools

10/03/18 - 10/17/18

Standard Drafting Team Nominations

Supporting Materials

Unofficial Nomination Form (Word)

 

Nomination Period


08/10/18 - 08/29/18
 

Comment Period

Info

Submit Comments



08/10/18 - 09/10/18