(CIP) Critical Infrastructure Protection

This standard identifies and categorizes BES Cyber Systems (BCS) and their associated BES Cyber Assets (BCA) for the application of cyber security requirements commensurate with the adverse impact that loss, compromise, or misuse of those BCS could have on the reliable operation of the Bulk Electric System (BES). Identification and categorization of BCS that support appropriate protection against compromises that could result in instability, uncontrolled separations, or Cascading within the BES.

This standard specifies consistent and sustainable security management controls that establish responsibility and accountability to protect Bulk Electric Systems (BES) Cyber Systems (BCS) against compromise that could lead to misoperation or instability in the Railbelt Region BES.

This standard minimizes the risk against compromise that could lead to misoperation or instability in the Bulk Electric System (BES) from individuals accessing BES Cyber Systems by requiring an appropriate level of personnel risk assessment, training, security awareness, and access management in support of protecting BES Cyber Systems.

This standard manages electronic access to BES Cyber Systems by specifying a controlled Electronic Security Perimeter in support of protecting BES Cyber Systems against compromise that could lead to misoperation or instability in the BES.

This standard manages physical access to Bulk Electric System (BES) Cyber Systems by specifying a physical security plan in support of protecting BES Cyber Systems against compromise that could lead to misoperation or instability in the BES.

This standard manages system security by specifying select technical, operational, and procedural requirements in support of protecting BES Cyber Systems against compromise that could lead to misoperation or instability in the Bulk Electric System (BES).

This standard mitigates the risk to the reliable operation of the BES as the result of a Cyber Security Incident by specifying incident response requirements.

This standard recovers reliability functions performed by BES Cyber Systems by specifying recovery plan requirements in support of the continued stability, operability, and reliability of the BES.

This standard prevents and detects unauthorized changes to BES Cyber Systems by specifying configuration change management and vulnerability assessment requirements in support of protecting BES Cyber Systems from compromise that could lead to misoperation or instability in the Bulk Electric System (BES).