Today’s LiveWire Spotlight evaluates FERC’s Notice of Inquiry regarding the adequacy of certain aspects of the current and soon-to-be-effective Critical Infrastructure Protection (CIP) standards. The Commission sees gaps when compared to the National Institute of Standards and Technology’s (NIST’s) latest Cybersecurity framework – and looks to determine if the standards adequately meet NIST’s expectations of data security, anomaly detection, and event mitigation.
FERC’s Notice of Inquiry regarding virtualization and cloud computing services have been posted for a 60-day public review. Clients have until August 24, 2020 to submit responses to the Commission – reply comments are due 30 days after that.