Implementation Study, Lessons Learned, and FAQs
From October 1, 2013 to June 30, 2014, six volunteer responsible entities worked with NERC and the Regional Entities to implement the CIP Version 5 standards in an accelerated time frame. These Implementation Study participants were selected based on their history of successful Version 3 compliance, effective management practices, and willingness to commit the required resources to support their transition. 
During the Implementation Study, study participants focused on the technical solutions and processes needed to meet the standards. Study participants faced key issues, challenges, and potential resolutions relating to:
  • Differences between the CIP Version 3 and CIP Version 5 standards;
  • Technical security practices needed to meet the CIP Version 5 requirements; and
  • Practices to demonstrate compliance with the CIP Version 5 requirements, including effective management practices to address any noncompliance
Going forward, NERC will continue to work with study participants to address compliance and enforcement matters.
Based on the Implementation Study, NERC and the Regional Entities developed a report that identifies key conclusions, lessons learned, and recommendations for transition to Version 5. Click here for the Implementation Study Final Report.
NERC and the Regional Entities are developing Lessons Learned and FAQ documents focused on specific topics identified during the Implementation Study. Draft and final Lessons Learned and FAQs will be posted on this page. For information on how Lessons Learned and FAQs will be developed, review the CIP V5 Transition Lessons Learned and FAQ Coordination document.

CIP V5 Transition Update.pdfJuly 1 Meeting Coordination and Way Forward
CIPv5_Implem_Study_Final_Report_Oct2014.pdfImplementation Study Final Report
Planned Lessons Learned and FAQs.pdfPlanned Lessons Learned and FAQs
Lessons Learned and FAQ Coordination.pdfLessons Learned and FAQ Coordination Process
BES Cyber Asset Lesson Learned (Final).pdfBES Cyber Asset Lesson Learned
CIP-002-5.1 Requirement R1 Impact Rating of Relays.pdfFar-End Relay Lesson Learned
CIP-002-5.1 Impact Rating of Generation Resource Shared BES Cyber Systems.pdfGeneration Segmentation Lesson Learned
CIPV5_FAQs_Consolidated_Oct2015_Oct_13_2015.pdfCIP V5 Final FAQs
Communications Networking Lesson Learned.pdfCommunications Networking Lesson Learned
External Routable Connectivity Lesson Learned.pdfExternal Routable Connectivity Lesson Learned
Generation Interconnection Lesson Learned.pdfGeneration Interconnection Lesson Learned
LL_EACMS_Mixed_Trust_Authentication_Sep_10_2015_clean.pdfMixed Trust EACMS Authentication Lessons Learned
LL_Grouping_BES_Cyber_Systems_Sep_8_2015_clean.pdfGrouping of BES Cyber Systems Lessons Learned
Vendor Access Management Lesson Learned.pdfVendor Access Management Lesson Learned
expand Grouping : Feedback on Lessons Learned and FAQs Previously Posted for Comment ‎(9)