Project 2019-02 BES Cyber System Information Access Management

Related Files

A 30-day formal comment period and nominations for SAR drafting team members for the Project 2019-02 BES Cyber System Information Access Management Standard Authorization Request (SAR) concluded at 8 p.m. Eastern, Friday, April 26, 2019.

This project enhances BES reliability by creating increased choice, greater flexibility, higher availability, and reduced-cost options for entities to manage their BES Cyber System Information, by providing a secure path towards utilization of modern third-party data storage and analysis systems. In addition, the proposed project would clarify the protections expected when utilizing third-party solutions (aka cloud).

Standard(s) Affected CIP-004-6 - Cyber Security - Personnel & Training | CIP-011-2 - Cyber Security - Information Protection

Purpose/Industry Need
The purpose of this project is to clarify the CIP requirements related to BES Cyber System Information (BCSI) access, to allow for alternative methods, such as encryption, to be utilized in the protection of BCSI.

DraftActionsDatesResultsConsideration of Comments
Drafting Team Nominations

Supporting Materials

Unofficial Nomination Form (Word)
Nomination Period


03/28/19 - 04/26/19

Supporting Materials
Comment Period


Submit Comments

03/28/19 - 04/26/19

Comments Received