Today’s LiveWire Spotlight examines a draft Security Guideline, which consolidates multiple studies on supply chain procurement language provided by the electric industry vendor community in response to a request by the Critical Infrastructure Protection Committee (CIPC) – the guideline’s sponsor. Several papers are cited which focus on the acquisition of energy control systems (e.g.; SCADA, EMS, DCS, and DMS) as required by CIP-013-1.
The initial draft of the NERC Security Guideline on Supply Chain Procurement Language has been posted for a 45-day industry stakeholder review. Comments must be returned to tom.hofstetter@nerc.net by September 21, 2020.