Related Files
Status
Final ballots concluded 8 p.m. Eastern, Friday, June 11, 2021 for the following:
-CIP-004-X - Cyber Security - Personnel & Training
-CIP-011-X - Cyber Security - Information Protection
-Implementation Plan
The voting results can be accessed via the links below. The standards will be submitted to the
Board of Trustees for adoption and then filed with the appropriate regulatory
authorities.
Background
This initiative enhances BES reliability by creating increased choice, greater flexibility, higher availability, and reduced‐cost options for entities to manage their BES Cyber System Information, by providing a secure path towards utilization of modern third‐party data storage and analysis systems. In addition, the proposed project would clarify the protections expected when utilizing third‐party solutions (e.g., cloud services).
Standard(s) Affected – CIP-004-6 - Cyber Security - Personnel & Training | CIP-011-2 - Cyber Security - Information Protection
Purpose/Industry Need
The purpose of this project is to clarify the CIP requirements related to BES
Cyber System Information (BCSI) access, to allow for alternative methods, such
as encryption, to be utilized in the protection of BCSI.
