Today’s LiveWire Spotlight looks at  CIP-003-X Draft 3, the latest version of the low impact cyber security supply chain standard – now posted for stakeholder review.  The drafting team proposes several nuanced updates to the vendor remote access security requirements, hoping to improve on the Draft 2 approval number (52.8%).  

Draft 3 of CIP-003-X and its supporting materials have been posted for a 45-day review and concurrent ballot.  Clients have until August 19, 2022 to return their comments back to the drafting team and to submit their votes through the NERC polling system.