Critical Infrastructure Protection THE ELECTRICITY SECTOR - PowerPoint PPT Presentation

1 / 21
About This Presentation
Title:

Critical Infrastructure Protection THE ELECTRICITY SECTOR

Description:

Critical Infrastructure Protection. THE ELECTRICITY SECTOR. Presented to ... Coordinates critical infrastructure protection of the bulk electric system (ESISAC) ... – PowerPoint PPT presentation

Number of Views:28
Avg rating:3.0/5.0
Slides: 22
Provided by: nerc8
Category:

less

Transcript and Presenter's Notes

Title: Critical Infrastructure Protection THE ELECTRICITY SECTOR


1
Critical Infrastructure ProtectionTHE
ELECTRICITY SECTOR
  • Presented to
  • EMERGENCY POWER CONFERENCE
  • November 2004

2
Topics
  • Electricity Sector (ES)
  • North American Electric Reliability Council
    (NERC)
  • Critical Infrastructure Protection (CIP)
    Organization
  • ES CIP Initiatives
  • ES Information Sharing Analysis Center (ESISAC)
  • Interdependencies
  • A Path Forward

3
The Electricity Sector
6 x10? C1
aGen bTransm cLSE dRC eCA fGov
3I
Characteristics Instantaneous, Interconnected,
Interdependent,
Reliability, Security
Organizations APPA, CEA, EEI, ELCON, EPRI,
EPSA, ESISAC other
ISACs, NEI, NERC, NAESB,
NRECA
Agencies DOE, DHS, DOD, FERC, NARUC, NRC,
PSEPC, RUS, USSS
4
Description and Definitions
  • APPA American Public Power Association
  • CA Control Area
  • CEA Canadian Electricity Association
  • DOD Department of Defense
  • DOE Department of Energy
  • DHS Department of Homeland Security
  • EEI Edison Electric Institute
  • ELCON Electr Consumers Resource Council
  • EPRI Electric Power Research Institute
  • EPSA Electric Power Supply Association
  • ES Electricity Sector
  • FERC Federal Energy Regulatory Commission
  • IAIP Info Analysis, Infrastructure Protection
  • ISAC Information Sharing and Analysis Center
  • NAESB No. Amer. Energy Standards Board
  • NARUC Natl Assoc Reg Utility Commissioners
  • NEI Nuclear Energy Institute
  • NERC North American Electric Reliability Cncl
  • NRC Nuclear Regulatory Commission
  • The equation
  • Summed over millions of Customers
  • Entity types that comprise the ES
  • Divided by three Interconnections
  • Eastern
  • Western
  • Texas
  • Generation, Transmission, Load Serving
    Entities, Purchasing-Selling Entities,
    Reliability Coordinators, Control Areas, Regional
    Transmission Organizations, Independent System
    Operators, Regulators (Canada/US
    Federal/State/Provincial/Local)

5
13 RC
3 RC
1 RC
6
What is NERC?
  • NERC was formed in 1968
  • NERC's mission is to ensure that the bulk
    electric system in North America is reliable,
    adequate and secure.
  • NERC operates as a voluntary industry
    organization, relying on reciprocity, peer
    pressure and mutual self-interest.
  • Energy legislation pending in the House and
    Senate Energy bills would enable NERC to become
    an SRO capable of enforcing compliance with its
    reliability standards.

7
What Does NERC Do?
  • Sets reliability standards.
  • Ensures compliance with reliability standards.
  • Provides education and training resources.
  • Conducts assessments, analyses, and reports.
  • Facilitates information exchange and coordination
    among members and industry organizations.
  • Supports reliable system operation and planning.
  • Certifies reliability service organizations and
    personnel.
  • Coordinates critical infrastructure protection of
    the bulk electric system (ESISAC).
  • Administers procedures for conflict resolution on
    reliability issues.

8
North American Electric Reliability Council
Structure
  • Board of Trustees
  • 9 independent members
  • Plus President
  • Standing Committees
  • Broad Sector representation
  • Subcommittees
  • Working Groups
  • Task Forces

Board of Trustees
Stakeholders
Staff
Operating Committee
Planning Committee
Operating
Committee
Market Committee
Critical Infrastructure Protection Committee
9
CIP Committee Structure
Physical Security Cyber Security Operations Policy
September 18, 2004
10
Electricity Sector Security Initiatives-1
  • 14 August 2004 Blackout
  • Outage investigation
  • 46 Recommendations
  • Standards
  • Readiness audits
  • Implement the National Infrastructure Protection
    Plan for the Electricity Sector
  • Indications, Analysis, Warnings program
  • Data/information exchange between ES and DHS
  • Threat Alert Levels Physical and Cyber
  • Guidance for ES actions in response to Homeland
    Security Alert System
  • Reference materials available
    http//www.esisac.com

11
Electricity Sector Security Initiatives-2
  • Cyber Security Standard
  • 1200 in place 1300 under development
  • 15 Security Guidelines
  • Physical, Cyber, Data
  • Critical Spares Project
  • Control Systems Security
  • Other technical studies
  • Outreach including workshops
  • Bi-lateral discussions and Urban Utility Center
  • Reference materials available
    http//www.esisac.com

12
Cyber Security Standard 1200
  • Requirements
  • Cyber Security Policy
  • Critical Cyber Assets
  • Electronic Security Perimeter
  • Electronic Access Controls
  • Physical Security Perimeter
  • Physical Access Controls
  • Personnel
  • Monitoring Physical Access
  • Monitoring Electronic Access
  • Information Protection
  • Training
  • Systems Management
  • Test Procedures
  • Electronic Incident Response Actions
  • Physical Incident Response Actions
  • Recovery Plans

13
Security Guidelines
Best practices for protecting critical
assets
  • Cyber Access Control
  • Cyber IT Firewalls
  • Cyber Intrusion Detection
  • Cyber Risk Management
  • Protecting Sensitive Info
  • Securing Remote Access Process Control Systems
  • Incident Reporting
  • Physical Security Substations
  • Overview
  • Communications
  • Emergency Plans
  • Employment Background Screen
  • Physical Security
  • Threat Response
  • Physical
  • Cyber
  • Vulnerability/Risk Assessment
  • Continuity of Business Process

14
ESISAC
  • Electricity SectorInformation Sharing Analysis
    Center
  • Share information about real and potential
    threats and vulnerabilities
  • Received from DHS and communicated to
    electricity sector participants
  • Received from electricity sector participants and
    communicated to DHS
  • Analyze information for trends, cross-sector
    dependencies, specific targets
  • Coordinate with other ISACs

15
http//www.esisac.com
16
Governments Sectors CoordinationOperations
(ES focus)
------------------ Governments ----------------
Sectors

DHS
DOE
PSEPC
CHEM
FS
ESISAC
. . .
TEL
Electricity Sector
Electricity Sector
RC
CA
TRAN
GEN
DIST
PSE
17
Operational ISACs
  • Chemical
  • Electricity
  • Emergency Management and Response
  • Energy (Oil and Gas)
  • Financial Services
  • Health Care
  • Highway
  • Information Technology
  • Multi-State
  • Public Transit
  • Research and Education Network
  • Surface Transportation
  • Telecommunications
  • Water

18
Electricity Sector Dependency On
19
ES Dependency on the Internet
  • Categories
  • Business System
  • Market System
  • Control System
  • Control System Support
  • Security System

20
A Path Forward
  • Interdependencies
  • Qualitative
  • Quantitative
  • Secure database
  • Plans
  • TESP
  • TSP
  • Communication
  • Strategic
  • Outreach
  • Tactical

21
Contacts
  • Lynn Costantini, CIO, NERC
  • lynn.costantini_at_nerc.net
  • Lou Leffler, Manager CIP, NERC
  • lou.leffler_at_nerc.net
  • NERC 609-452-8060
  • ESISAC 609-452-1422
  • Note Referenced materials and this
  • presentation available at
  • http//www.esisac.com

TY
Write a Comment
User Comments (0)
About PowerShow.com
Home About Us Terms and Conditions Privacy Policy Presentation Removal Request Contact Us
Copyright 2024 CrystalGraphics, Inc. — All rights Reserved. PowerShow.com is a trademark of CrystalGraphics, Inc.
The PowerPoint PPT presentation: "Critical Infrastructure Protection THE ELECTRICITY SECTOR" is the property of its rightful owner.
Do you have PowerPoint slides to share? If so, share your PPT presentation slides online with PowerShow.com. It's FREE!