Today’s LiveWire Spotlight looks at the initial Standards Authorization Request (SAR) for Project 2018-02 – which launches an initiative directed in FERC Order 848 to modify the CIP-008 cyber security incident reporting process. The SAR proposes four expansions in scope to address the underreporting of cyber incidents to the E-ISAC; only three reports were submitted by industry during the 2014 thru 2016 timeframe
The initial Standards Authorization Request to modify the Cyber Security Incident Reporting process has been posted on the NERC website for a 30-day review period. Comments must be returned to the SAR drafting team by September 10, 2018.