Today’s LiveWire Spotlight examines NERC’s proposed Compliance Guidance for Cloud Solutions and Encrypting BCSI. The document identifies the security tasks owned by the cloud service provider under shared responsibility scenarios – varying by the level of control over all facets of data storage encryption key management (i.e.; applied at rest, in transit, and during use.)
As of August 13, 2020, The ERO Enterprise has officially endorsed twenty-nine guidelines related to the CIP, FAC, MOD, PRC, TOP, and TPL standards. Eight others addressing some of the most complex NERC requirements are under consideration.