NORTH AMERICAN ELECTRIC RELIABILITY COUNCIL

Similar documents
VAR Generator Operation for Maintaining Network Voltage Schedules

Standard TOP Monitoring System Conditions

Standard Development Timeline

Standard COM Communications

Final ballot January BOT adoption February 2015

Standard VAR-002-2b(X) Generator Operation for Maintaining Network Voltage Schedules. 45-day Formal Comment Period with Initial Ballot June July 2014

Standard VAR-002-2b(X) Generator Operation for Maintaining Network Voltage Schedules

Standard VAR-002-2b(X) Generator Operation for Maintaining Network Voltage Schedules

Standard PRC Coordination of Generating Unit or Plant Voltage Regulating Controls with Generating Unit or Plant Capabilities and Protection

A. Introduction. VAR Voltage and Reactive Control

VAR Voltage and Reactive Control

Final ballot January BOT adoption February 2015

Standard VAR b Generator Operation for Maintaining Network Voltage Schedules

August 25, 2017 VIA ELECTRONIC FILING

Standard PRC Generator Frequency and Voltage Protective Relay Settings. A. Introduction. See the Implementation Plan for PRC

August 25, Please contact the undersigned if you have any questions concerning this filing.

Implementation Plan Project Modifications to PRC Reliability Standard PRC-025-2

VAR Generator Operation for Maintaining Network Voltage Schedules

WECC Standard VAR-002-WECC-2 Automatic Voltage Regulators

Standard PRC Generator Frequency and Voltage Protective Relay Settings. A. Introduction

VAR Voltage and Reactive Control. A. Introduction

VAR Generator Operation for Maintaining Network Voltage Schedules

Standard PRC Coordination of Generating Unit or Plant Capabilities, Voltage Regulating Controls, and Protection

NORMES DE FIABILITÉ DE LA NERC (VERSION ANGLAISE)

THIS DOCUMENT IS RETIRED BY FERC EFFECTIVE SEPTEMBR 5, 2018.

Standard PRC Coordination of Generating Unit or Plant Capabilities, Voltage Regulating Controls, and Protection

Standard Development Timeline

VAR Generator Operation for Maintaining Network Voltage Schedules

5. Effective Date: On the first day of the first quarter, after applicable regulatory approval.

Standard BAL Frequency Response and Frequency Bias Setting

generation greater than 75 MVA (gross aggregate nameplate rating) Generation in the ERCOT Interconnection with the following characteristics:

UNITED STATES OF AMERICA BEFORE THE FEDERAL ENERGY REGULATORY COMMISSION ) )

VAR Generator Operation for Maintaining Network Voltage Schedules

Standard VAR Voltage and Reactive Control

Implementation Plan Project Balancing Authority Reliability-based Controls - Reserves

Standard Development Timeline

PRC Generator Relay Loadability. A. Introduction 1. Title: Generator Relay Loadability 2. Number: PRC-025-1

PRC Generator Relay Loadability. A. Introduction 1. Title: Generator Relay Loadability 2. Number: PRC-025-1

Texas Reliability Entity Event Analysis. Event: May 8, 2011 Loss of Multiple Elements Category 1a Event

Standard BAL-005-0b Automatic Generation Control

Definition of Bulk Electric System Phase 2

VAR Outreach Presentation

Bulk Electric System Definition Reference Document

Area Control Error (ACE) Equation Special Cases

(Circuits Subject to Requirements R1 R5) Generator Owner with load-responsive phase protection systems as described in

Standard BAL b Automatic Generation Control

Transmission Availability Data System (TADS) Data Reporting Instruction Manual

PRC Disturbance Monitoring and Reporting Requirements

Standard BAL b Automatic Generation Control

Voltage and Reactive Procedures CMP-VAR-01

Transmission Availability Data System (TADS) DATA REPORTING INSTRUCTION MANUAL

Standard MOD Area Interchange Methodology

Standard MOD Verification of Models and Data for Generator Excitation Control Sys tem or Plant Volt/Var Control Functions

Loss of Solar Resources during Transmission Disturbances due to Inverter Settings II

Reliability Guideline Integrating Reporting ACE with the NERC Reliability Standards

Implementation Plan Project Alignment of Terms

Bulk Electric System Definition Reference Document

May 30, Errata to Implementation Plan for the Revised Definition of Remedial Action Scheme Docket No. RM15-13-_

An Introduction to Completing a NERC PRC-019 Study for Traditional and Distributed Generation Sources

NPCC Regional Reliability Reference Directory # 12. Underfrequency Load Shedding Program Requirements

Standard BAL b3 Automatic GenerationBalancing Authority Control DRAFT

Standard Development Timeline

September 19, Errata to Implementation Plan for the Revised Definition of Remedial Action Scheme

Minutes Frequency Response Initiative Meeting

Standard MOD Verification of Models and Data for Generator Excitation Control System or Plant Volt/Var Control Functions

Recently, the SS38 Working Group on Inter-Area Dynamic Analysis completed two study reports on behalf of the UFLS Regional Standard Drafting Team.

Re: JICPA Comments on the PCAOB Rulemaking Docket Matter No. 034

Manually verifiable area calculations; and BC Land Surveyor certified area calculations (typically practical only for large development proposals).

Remedial Action Scheme Definition Development

RECORDS RETENTION SCHEDULE (RC-2) See instructions before completing this form.

Cover Sheet. Technical Justification Retirement of WECC Regional Reliability Standard VAR-002-WECC-2 Automatic Voltage Regulators (AVR)

Establishment of Electrical Safety Regulations Governing Generation, Transmission and Distribution of Electricity in Ontario

JANUARY. DATE ACTIVITY ORC Reference NOTES 1st day of January after election

Calculating and Using Reporting ACE in a Tie Line Bias Control Program

Table 1 - Assignment of BA Obligations... 8

Transmission Availability Data System Phase II Final Report

ASME BPV XI Interpretation Handout May 10, 2017

Bulk Electric System Definition Reference Document

Compliance pack. Table of Contents Version Control General Information Operator s Manual... 4

CAR Part IX Regulations for srpas Manufacturers. Presented by RPAS TF Eng to Industry, Jan. 24, 2019

Reliability Guideline: Generating Unit Operations During Complete Loss of Communications

(AMMA) American Maritime Modernization Association

PRC Compliance Using Bitronics 70 Series Recorders

MISSISSIPPI STATE UNIVERSITY Office of Planning Design and Construction Administration

0. Getting Started. Guide of Configuring INAZUMA Certified Systems. INAZUMA Head Office of Sony

Consideration of Comments on FRCC Regional Bulk Electric System Definition Clarification Project Version 1

BEFORE THE ALBERTA ELECTRIC SYSTEM OPERATOR

FACILITY RATINGS METHOD TABLE OF CONTENTS

PeopleSoft User Group. April 19, 2017

TCC/SHORE TRANSIT BUS MAINTENANCE FACILITY - PHASE II

Friday, October 19, 2018

Reliability Guideline: Generating Unit Operations During Complete Loss of Communications

SECTION SUBMITTAL PROCEDURES

SECTION SHOP DRAWINGS, PRODUCT DATA, AND SAMPLES

ReliabilityFirst Regional Criteria 1. Disturbance Monitoring and Reporting Criteria

American Nuclear Society

UK Shared Business Services Ltd

Unit Auxiliary Transformer Overcurrent Relay Loadability During a Transmission Depressed Voltage Condition

Project Balancing Authority Reliability-based Controls Reliability Standard BAL-005-1

1625 North 1100 West SB Springville, UT SERVICE BULLETIN MANDATORY ACTION REQUIRED

Transcription:

NORTH AMERICAN ELECTRIC RELIABILITY COUNCIL Princeton Forrestal Village, 116-390 Village Boulevard, Princeton, New Jersey 08540-5731 (Revised) Implementation Plan for Cyber Security Standards The intent of the proposed Cyber Security Standards is to ensure that all entities responsible for the reliability of the Bulk Electric s in North America identify and protect Critical Cyber Assets that control or could impact the reliability of the Bulk Electric s. This implementation plan is based on the following assumptions: Cyber Security Standards CIP-002-1, CIP-003-1, CIP-004-1, CIP-005-1, CIP-006-1, CIP-007-1, CIP-008-1, and CIP-009-1 are approved by the ballot body and the NERC Board of Trustees no later than May 2, 2006. Responsible Entities have registered. Cyber Security Standards become effective June 1, 2006. To provide time for Responsible Entities to examine their policies and procedures, to assemble the necessary documentation, and to meet the requirements of these standards, compliance assessment will begin in 2007. The table below lists specific periods by which applicable Responsible Entities must be Auditably Compliant (defined below) with each requirement. Implementation Schedule The following tables identify when Responsible Entities must Begin Work (BW) to become compliant with a requirement, Substantially Compliant (SC) with a requirement, Compliant (C) with a requirement, and Auditably Compliant (AC) with a requirement. Begin Work means a Responsible Entity has developed and approved a plan to address the requirements of a standard, has begun to identify and plan for necessary resources, and has begun implementing the requirements. Substantially Compliant means an entity is well along in its implementation to becoming compliant with a requirement, but is not yet fully compliant. Compliant means the entity meets the full intent of the requirements and is beginning to maintain required data, documents, documentation, logs, and records. Auditably Compliant means the entity meets the full intent of the requirement and can demonstrate compliance to an auditor, including 12-calendar- of auditable data, documents, documentation, logs, and records. Per the standards, each subsequent compliance-monitoring period will require the previous full calendar year of such material. The implementation plan is broken into four tables as described below. The tables specify a compliance schedule for NERC Functional Model entities, referred to as Responsible Entities in CIP-002 through CIP-009 standards. For organizations that are multiple Functional Model entities, each such Functional Model entity is required to demonstrate progress towards compliance according to the applicable table. Phone 609-452-8060 Fax 609-452-9550 URL www.nerc.com

For instance, Table 1 applies to the Energy (Balancing Authority and Transmission Operator who were required to self-certify under Urgent Action Standard 1200) while the same organization s Generating Plant function (Generation Owners), would use Table 3. Likewise, this same organization s Transmission Provider function would use Table 2. Table 1 defines the implementation schedule for Balancing Authorities (BA), Transmission Operators (TOP), and Reliability Coordinators (RC) that were required to self-certify compliance to NERC s Urgent Action Cyber Security Standard 1200 (UA 1200). Table 2 defines the implementation schedule for Transmission Service Providers (TSP), those Transmission Operators (TOP) and Balancing Authorities that were not required to self-certify compliance to UA 1200, NERC, and the Regional Reliability Organizations. Table 3 defines the implementation schedule for Responsible Entities required to register during 2006. Table 4 defines the implementation schedule for Responsible Entities registering to a Functional Model function in 2007 and thereafter. Table 1 Compliance Schedule for Standards Balancing Authorities and Transmission Operators Required to Self-certify to UA Standard 1200, and Reliability Coordinators End of 2 nd Qtr 2007 End of 2 nd Qtr 2008 End of 2 nd Qtr 2009 End of 2 nd Qtr 2010 Requirement Standard CIP-002-1 Critical Cyber Assets R1 SC BW C SC AC C AC AC R2 SC BW C SC AC C AC AC R3 SC BW C SC AC C AC AC Standard CIP-003-1 Security Management s R1 SC BW C SC AC AC AC AC R2 SC SC C C AC AC AC AC R3 SC BW C SC AC C AC AC R5 BW BW SC SC C C AC AC Page 2 of 11

Table 1 (cont.) End of 2 nd Qtr 2007 End of 2 nd Qtr 2008 End of 2 nd Qtr 2009 End of 2 nd Qtr 2010 Requirement R6 BW BW SC SC C C AC AC Standard CIP-004-1 Personnel & Training R1 BW BW SC SC C C AC AC R2 SC BW C SC AC C AC AC R3 SC BW C SC AC C AC AC R4 SC BW C SC AC C AC AC Standard CIP-005-1 Electronic Security R1 BW BW SC SC C C AC AC R2 BW BW SC SC C C AC AC R3 BW BW SC SC C C AC AC R5 BW BW SC SC C C AC AC Standard CIP-006-1 Physical Security R1 BW BW SC SC C C AC AC R2 BW BW SC SC C C AC AC R3 BW BW SC SC C C AC AC R5 BW BW SC SC C C AC AC R6 BW BW SC SC C C AC AC Standard CIP-007-1 s Security Management R1 SC BW C SC AC C AC AC R2 BW BW SC SC C C AC AC R3 BW BW SC SC C C AC AC R5 BW BW SC SC C C AC AC Page 3 of 11

Table 1 (cont.) End of 2 nd Qtr 2007 End of 2 nd Qtr 2008 End of 2 nd Qtr 2009 End of 2 nd Qtr 2010 Requirement R6 BW BW SC SC C C AC AC R7 BW BW SC SC C C AC AC R8 BW BW SC SC C C AC AC R9 BW BW SC SC C C AC AC Standard CIP-008-1 Incident Reporting and Response Planning R1 SC BW C SC AC C AC AC R2 BW BW SC SC C C AC AC Standard CIP-009-1 Recovery Plans R1 SC BW C SC AC C AC AC R2 SC BW C SC AC C AC AC R3 BW BW SC SC C C AC AC R5 BW BW SC SC C C AC AC Page 4 of 11

Table 2 Compliance Schedule for Standards Transmission Service Providers, those Balancing Authorities and Transmission Operators Not Required to Self-certify to UA Standard 1200, NERC, and Regional Reliability Organizations. End of 2 nd Qtr 2007 End of 2 nd Qtr 2008 End of 2 nd Qtr 2009 End of 2 nd Qtr 2010 Requirement All All All All Standard CIP-002-1 Critical Cyber Assets Standard CIP-003-1 Security Management s R2 SC C AC AC Standard CIP-004-1 Personnel & Training Standard CIP-005-1 Electronic Security Page 5 of 11

Table 2 (cont.) Standard CIP-006-1 Physical Security Standard CIP-007-1 s Security Management R7 BW SC C AC R8 BW SC C AC R9 BW SC C AC Standard CIP-008-1 Incident Reporting and Response Planning Standard CIP-009-1 Recovery Plans Page 6 of 11

Table 3 Compliance Schedule for Standards Interchange Authorities, Transmission Owners, Generator Owners, Generator Operators, and Load-Serving Entities December 31, 2006 December 31, 2008 December 31, 2009 December 31, 2010 Requirement All All All All Standard CIP-002-1 Critical Cyber Assets Standard CIP-003-1 Security Management s R2 SC C AC AC Standard CIP-004-1 Personnel & Training Standard CIP-005-1 Electronic Security Page 7 of 11

Table 3 (cont.) December 31, 2006 December 31, 2008 December 31, 2009 December 31, 2010 Requirement All All All All Standard CIP-006-1 Physical Security Standard CIP-007-1 s Security Management R7 BW SC C AC R8 BW SC C AC R9 BW SC C AC Standard CIP-008-1 Incident Reporting and Response Planning Standard CIP-009-1 Recovery Plans Page 8 of 11

Table 3 (cont.) December 31, 2006 December 31, 2008 December 31, 2009 December 31, 2010 Requirement All All All All Table 4 Compliance Schedule for Standards For Entities Registering in 2007 and Thereafter. Upon Registration Registration + 12 Registration + 24 Registration + 36 Requirement All All All All Standard CIP-002-1 Critical Cyber Assets Standard CIP-003-1 Security Management s R2 SC C AC AC Standard CIP-004-1 Personnel & Training Page 9 of 11

Table 4 (cont.) Upon Registration Registration + 12 Registration + 24 Registration + 36 Requirement All All All All Standard CIP-005-1 Electronic Security Standard CIP-006-1 Physical Security Standard CIP-007-1 s Security Management R7 BW SC C AC R8 BW SC C AC R9 BW SC C AC Page 10 of 11

Table 4 (cont.) Upon Registration Registration + 12 Registration + 24 Registration + 36 Requirement All All All All Standard CIP-008-1 Incident Reporting and Response Planning Standard CIP-009-1 Recovery Plans Page 11 of 11

2024 © hobbydocbox.com Privacy Policy | Terms of Service | Feedback