Statement on FERC's October Open Meeting

WASHINGTON, D.C. – The Federal Energy Regulatory Commission took action on two items related to reliability at its open meeting today.

FERC issued Order No. 850 approving new, forward-looking and objective-based Reliability Standards to address supply chain risk management on the North American bulk power system. Intended to augment current Critical Infrastructure Protection Standards to mitigate cyber supply chain security risks for grid-related cyber systems, the new Supply Chain Risk Management Standards require each affected entity to develop and implement a plan that includes security controls for supply chain management for industrial control system hardware, software, and services associated with bulk electric system operations.

In the order, FERC directs NERC to develop modifications that will include Electronic Access Control and Monitoring Systems associated with medium and high impact BES Cyber Systems within the scope of the supply chain risk management Reliability Standards over the next 24 months. FERC also approved NERC's request for an 18-month implementation period, saying it was justified because longer time-horizon capital budgets and planning cycles may be necessary for the technical upgrades to meet the Reliability Standards' security objectives. The final rule takes effect 60 days after publication in the Federal Register.

FERC also issued an order approving the 2019 business plan and budget for NERC, its regional entities, and the Western Interconnection Regional Advisory Body.

NERC staff will continue the work with FERC and stakeholders toward assuring the reliability of the North American bulk power system.

FERC Press Release

Posted On: 10/18/2018