What is NERC?
NERC is the North American Electric Reliability Council. A voluntary organization in operation since 1968, its mission is to make bulk electricity reliable, adequate, and secure. For more information, check out the
NERC Website.
What do all the different standards names mean (1200, 1300, CIP)?
NERC 1200 -
Preliminary Standards, Expires September 2005.
NERC 1300 - Current standard in effect, has been renamed to CIP
(Critical Infrastructure Protection) Standards.
CIP - Critical Infrastucture Protection - A set of
standards created by NERC to reduce risks to the reliability of the bulk electric systems from any compromise of critical cyber assets.
Download the current CIP Standards from the
NERC Website.
How does NERC CIP affect my utility?
The NERC CIP Standards include extensive requirements for securing utility infrastructure and implementing specific information management policies. Most US utilities do not currently meet these requirements. You need to determine the gap that exists between your existing system and your legal responsibilities after the CIP Standards come into effect in order to gauge the effect on your utility.
When does my organization have to comply with NERC CIP requirements?
Your Utility must be
Substantially Compliant by Q1, 2006. Your Utility must be
Auditably Compliant by Q1, 2007. For further clarification
and exact dates please read the
CIP Implementation Plan PDF
document, from the NERC website.
What happens if I don't comply by the specified dates?
Your Utility may be subject to heavy fines,
and remains at risk as a liability to public health.
Which specific CIP (NERC) requirements does EnterpriseSERVER help me comply with?
View the EnterpriseSERVER Compliance Chart
 PDF
(80 KB) for
details.
|
