Today’s LiveWire Spotlight examines FERC’s Notice of Proposed Rulemaking (NOPR) looking to act on findings from two devastatingly-successful cyber-attacks that may have been deflected if early warnings of hostile compromise had been given – the SolarWinds’ Orion platform hack and the ransoming of the Colonial Pipeline. The Commission sees Internal Network Security Monitoring (INSM) systems which analyze data traffic within trust zones as a viable solution – stopping attacks before they can gain a strong foothold on the target.
FERC’s docket calling for the development of internal network security monitoring CIP Standards has been posted for a 60-day public review. Clients have until March 28 to submit comments regarding the CIP requirements that the Commission has proposed.