Today’s LiveWire Spotlight looks at the first postings of CIP-004-7 and CIP-011-3 – modified to allow alternative protective strategies that secure access to BES Cyber System Information (BCSI). The updates are intended to account for encryption key management and third-party information storage services that are not specifically permitted in the in-effect standards.
The initial drafts of CIP-004-7 and CIP-011-3 have been posted for a 45-day review and concurrent ballot. Industry stakeholder comments are due back to the project team by February 3, 2020 and votes must be cast on or before the same day.