Standard CIP-004-3 requires that personnel having authorized cyber or authorized unescorted physical access to Critical Cyber Assets, including contractors and service vendors, have an appropriate level of personnel risk assessment, training, and security awareness. Standard CIP-004-3 should be read as part of a group of standards numbered Standards CIP-002-3 through CIP-009-3.
expand Grouping : Compliance ‎(1)
expand Grouping : Development History ‎(3)
V3_Implementation_Plan_clean_last_approval_2009Nov19.pdfImplementation Plan
Imp-Plan_Newly_Identified_CCA_RE_clean_last_approval_2009Nov19.pdfImplementation Plan for Newly Identified CCAs and Newly Registered Entities
CIP_V3_Implementation_Plan.pdfNuclear Implementation Plan