The numbers can be staggering. It is not uncommon for Utility organizations to spend over a MAN-YEAR (2000+ hours) of resource to produce their RSAWs. The process is stressful and error-prone. It often involves corporate compliance, management, many SMEs, and legal. Just policing the creation, review, and approval of the responses in each RSAW can […]
NERC Compliance Blog
Articles relating to our NERC CIP & 693 Compliance offerings
H.R. 5026 Grid Reliability and Infrastructure Defense Act or the ‘‘GRID Act” as is it known, is setting the table to allow the current Administration to nationalize the grid. There, I said it! This piece of legislation passed the House Energy & Commerce Committee unanimously 47-0. Apparently no sane person on the committee read this […]
We are excited to share our new NERC Compliance video with you! If you have five minutes to spare and need help with your NERC Compliance initiative, we believe this video will enable you to become more familiar with our software solution, services and approach to audit readiness.
Having worked with business processes of almost every kind over the last decade it is not surprising to me that compliance processes often miss the mark. While intentions are good, often times process characteristics creep in that actually get in the way of achieving the end goal of compliance. The problem is the approach. Effective […]
Controls are becoming very important to NERC CIP compliance. Yet these are not traditional oversight controls, they are reliability assurance controls. Sounds great, doesn’t it? The only challenge is – what are reliability assurance controls? The best way to understand what reliability assurance controls are is to look at some common threats to reliability assurance. […]
After my last blog on CIP V5 (CIP Version 5 – Are you Ready for CIP? ) I had the opportunity to discuss my observations with James Holler of Abidance Consulting (www.abidanceconsulting.com). In that conversation, we dug into the confusion around Impact ratings in CIP V5, Critical Assets (V3), and BES Cyber Systems / BES […]