low impact focus group
play

Low Impact Focus Group Monthly Meeting January 23, 2018 Opening - PowerPoint PPT Presentation

May 08, 2023 •273 likes •445 views

Low Impact Focus Group Monthly Meeting January 23, 2018 Opening Comments This meeting is being recorded All lines will be muted. In order to comment, you may: Use the WebEx Raise Hand feature. Send a message to the

  1. Low Impact Focus Group Monthly Meeting January 23, 2018

  2. Opening Comments  This meeting is being recorded  All lines will be muted.  In order to comment, you may: • Use the WebEx “Raise Hand” feature. • Send a message to the presenter via WebEx chat.  When commenting, be mindful that this is an open call. RF cannot fully pre-screen the attendees. 2 Forward Together • ReliabilityFirst

  3. Announcements  NERC’s Antitrust Guidelines are available at: • http://www.nerc.com/pa/Stand/Resources/Documents/NER C_Antitrust_Compliances_Guidelines.pdf  This is a public call. RF cannot fully pre-screen the attendees. 3 Forward Together • ReliabilityFirst

  4. Mailing List  ciplifg@lists.rfirst.org  This list is intended as a discussion forum.  List changes, such as additions or removals, should be sent to: lew.folkerth@rfirst.org 4 Forward Together • ReliabilityFirst

  5. Standards Update – Incident Reporting NOPR  Background • On January 13, 2017, the Foundation for Resilient Societies submitted a petition (https://elibrary.ferc.gov/ idmws/common/opennat.asp?fileID=14475801) requesting changes to the CIP Standards regarding enhanced: ‒ Malware detection, ‒ Malware reporting, ‒ Malware mitigation, and ‒ Malware removal. • In response, on December 21, 2017, FERC issued a Notice of Proposed Rulemaking (NOPR) proposing to enhance the reporting of Cyber Security Incidents. 5 Forward Together • ReliabilityFirst

  6. Standards Update – Incident Reporting NOPR  CIP-008-5 • R1: Document one or more Cyber Security Incident response plans • R2: Periodically test the plans from R1 by responding to or simulating a Reportable Cyber Security Incident • R2: Implement the plans from R1 for an occurrence of a Reportable Cyber Security Incident • R2: Retain records of each Reportable Cyber Security Incident • R3: Maintain the plans from R1 6 Forward Together • ReliabilityFirst

  7. Standards Update – Incident Reporting NOPR  CIP-003-6/7 R2 Attachment 1 Section 4 • Have one or more Cyber Security Incident response plans • Implement the plans from R1 for an occurrence of a Cyber Security Incident • Periodically test the plans from R1 by responding to or simulating a Reportable Cyber Security Incident • Maintain the plans from R1 7 Forward Together • ReliabilityFirst

  8. Standards Update – Incident Reporting NOPR  Definitions • Cyber Security Incident ‒ “A malicious act or suspicious event that: • Compromises, or was an attempt to compromise, the Electronic Security Perimeter or Physical Security Perimeter or, • Disrupts, or was an attempt to disrupt, the operation of a BES Cyber System.” • Reportable Cyber Security Incident ‒ “A Cyber Security Incident that has compromised or disrupted one or more reliability tasks of a functional entity.” 8 Forward Together • ReliabilityFirst

  9. Standards Update – Incident Reporting NOPR  Three elements of the proposed directive: • Cyber Security Incident Reporting Threshold • Content of Cyber Security Incident Reports • Timing of Cyber Security Incident Reports 9 Forward Together • ReliabilityFirst

  10. Standards Update – Incident Reporting NOPR  Cyber Security Incident Reporting Threshold • Expand the scope of Cyber Security Incident reporting by: ‒ Including compromises or attempts to compromise ‒ Including ESP and EACMS 10 Forward Together • ReliabilityFirst

  11. Standards Update – Incident Reporting NOPR  Content of Cyber Security Incident Reports • The functional impact achieved or that was attempted ‒ Functional impact is a measure of the actual, ongoing impact to: • The organization, • The affected BES Cyber Systems, and • The ability to protect or operate those BES Cyber Systems. • The attack vector used ‒ The attack vector is the method used to exploit a vulnerability • The level of intrusion that was achieved or attempted ‒ The level of intrusion is the extent of the penetration into protected systems 11 Forward Together • ReliabilityFirst

  12. Standards Update – Incident Reporting NOPR  Timing of Cyber Security Incident Reports • Create deadline for filing report with information specified above ‒ Take into consideration the severity of the incident • Submission of detailed report to both E-ISAC and ICS- CERT 12 Forward Together • ReliabilityFirst

  13. Standards Update – Incident Reporting NOPR  Observations • Use of the terms “ESP,” “EACMS,” and “BES Cyber Systems within the ESP” may mean that the proposed revisions will be intended for high and medium impact BES Cyber Systems only, although this is not yet clear. • CIP-008-5 will need to be modified to require activation of the incident response plans for any Cyber Security Incident, not just Reportable Cyber Security Incidents. 13 Forward Together • ReliabilityFirst

  14. Standards Update – Supply Chain NOPR  Background • FERC Order 829 required NERC to develop Supply Chain Cyber Security Standards • NERC, through the Standards Development Process, produced and filed the new Standard CIP-013-1 and revised Standards CIP-005-6 and CIP-010-3 • In approving these Standards for submission to FERC, the NERC Board of Trustees (BoT) approved six resolutions to further study supply chain risks, including the risks to low impact BES Cyber Systems • On January 18, 2018, FERC issued a Notice of Proposed Rulemaking (NOPR) proposing to approve these Standards and to order further revisions 14 Forward Together • ReliabilityFirst

  15. Standards Update – Supply Chain NOPR  Key Points – The NOPR proposes to: • Approve CIP-013-1, CIP-005-6, and CIP-010-3 • Order inclusion of EACMS in the scope of these Standards • Oder NERC to include PACS and PCA in the BoT- requested study • Wait for the BoT-requested study of cyber security supply chain risks associated with low impact assets before taking action on low impact • Change the implementation period from 18 months to 12 months 15 Forward Together • ReliabilityFirst

  16. Future Meetings  Next conference call (WebEx): • Tuesday, February 20, 2017 at 11:00AM EST 16 Forward Together • ReliabilityFirst

  17. Questions & Answers Forward Together ReliabilityFirst 17 Forward Together • ReliabilityFirst

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Low Impact Focus Group August 16, 2018 Opening Comments This meeting is being recorded

Low Impact Focus Group August 16, 2018 Opening Comments This meeting is being recorded

Low Impact Focus Group August 16, 2018 Opening Comments This meeting is being recorded All lines will be muted. In order to comment, you may: Use the WebEx Raise Hand feature. Send a message to the presenter via WebEx

301 views • 26 slides
Low Impact Focus Group Monthly Meeting November 14, 2017 Opening Comments This meeting is

Low Impact Focus Group Monthly Meeting November 14, 2017 Opening Comments This meeting is

Low Impact Focus Group Monthly Meeting November 14, 2017 Opening Comments This meeting is being recorded All lines will be muted. In order to comment, you may: Use the WebEx Raise Hand feature. Send a message to the

350 views • 15 slides
Low Impact Focus Group Kickoff Meeting July 18, 2017 Opening Comments This meeting is being

Low Impact Focus Group Kickoff Meeting July 18, 2017 Opening Comments This meeting is being

Low Impact Focus Group Kickoff Meeting July 18, 2017 Opening Comments This meeting is being recorded All lines are open in order to facilitate discussion Please mute your line when not speaking Please do not put this call on hold

292 views • 11 slides
Low Impact Focus Group April 20, 2018 Opening Comments This meeting is being recorded All

Low Impact Focus Group April 20, 2018 Opening Comments This meeting is being recorded All

Low Impact Focus Group April 20, 2018 Opening Comments This meeting is being recorded All lines will be muted. In order to comment, you may: Use the WebEx Raise Hand feature. Send a message to the presenter via WebEx

275 views • 13 slides
Low Impact Focus Group Monthly Meeting September 19, 2017 Opening Comments This meeting is

Low Impact Focus Group Monthly Meeting September 19, 2017 Opening Comments This meeting is

Low Impact Focus Group Monthly Meeting September 19, 2017 Opening Comments This meeting is being recorded All lines are open in order to facilitate discussion Please mute your line when not speaking Please do not put this call on

239 views • 13 slides
Low Impact Focus Group Monthly Meeting August 15, 2017 Opening Comments This meeting is

Low Impact Focus Group Monthly Meeting August 15, 2017 Opening Comments This meeting is

Low Impact Focus Group Monthly Meeting August 15, 2017 Opening Comments This meeting is being recorded All lines are open in order to facilitate discussion Please mute your line when not speaking Please do not put this call on

264 views • 10 slides
Low Impact Focus Group Monthly Meeting October 24, 2017 Opening Comments This meeting is

Low Impact Focus Group Monthly Meeting October 24, 2017 Opening Comments This meeting is

Low Impact Focus Group Monthly Meeting October 24, 2017 Opening Comments This meeting is being recorded All lines are open in order to facilitate discussion Please mute your line when not speaking Please do not put this call on

490 views • 25 slides
SECOND FOCUS GROUP: THE IMPACT OF DIGITALISATION ON WORK-LIFE BALANCE Improving work-life

SECOND FOCUS GROUP: THE IMPACT OF DIGITALISATION ON WORK-LIFE BALANCE Improving work-life

TUNED - Trade Union ' s National and European Delegation EUPAE - European Public Administration Employers SECOND FOCUS GROUP: THE IMPACT OF DIGITALISATION ON WORK-LIFE BALANCE Improving work-life balance: opportunities and risks coming from

366 views • 12 slides
FIRST FOCUS GROUP: THE IMPACT OF DIGITALISATION ON WORK-LIFE BALANCE IMPROVING WORK-LIFE

FIRST FOCUS GROUP: THE IMPACT OF DIGITALISATION ON WORK-LIFE BALANCE IMPROVING WORK-LIFE

TUNED - Trade Union ' s National and European Delegation EUPAE - European Public Administration Employers FIRST FOCUS GROUP: THE IMPACT OF DIGITALISATION ON WORK-LIFE BALANCE IMPROVING WORK-LIFE BALANCE: OPPORTUNITIES AND RISKS COMING FROM

227 views • 20 slides
Focus Groups A Focus Group Is . . . What A carefully planned discussion To obtain

Focus Groups A Focus Group Is . . . What A carefully planned discussion To obtain

Focus Groups A Focus Group Is . . . What A carefully planned discussion To obtain perceptions of a defined interest area 2 A Focus Group Is . . . Where In a permissive, non-threatening environment 3 A Focus Group Is . . .

422 views • 16 slides
Focus Group and Parent Survey Feedback Focus Group Feedback Intro Focus group comprised of:

Focus Group and Parent Survey Feedback Focus Group Feedback Intro Focus group comprised of:

Focus Group and Parent Survey Feedback Focus Group Feedback Intro Focus group comprised of: 31 community parent and staff participants Three meetings: Meeting one : Overview of the issue Meeting two : Investigate further with

288 views • 14 slides
DRAFT Hall School Culture and Student Conduct Focus Group June 15, 2016 Focus Group Planning

DRAFT Hall School Culture and Student Conduct Focus Group June 15, 2016 Focus Group Planning

DRAFT Hall School Culture and Student Conduct Focus Group June 15, 2016 Focus Group Planning The purpose of the Focus Group is to collaborate as stakeholders to give input and recommendations to establish, revise and communicate clear,

695 views • 20 slides
stakeholders: focus on pharmacovigilance Impact of Pharmacovigilance/Effectiveness of Risk

stakeholders: focus on pharmacovigilance Impact of Pharmacovigilance/Effectiveness of Risk

Demonstrating impact for public health and stakeholders: focus on pharmacovigilance Impact of Pharmacovigilance/Effectiveness of Risk Minimisation/Best evidence Joint meeting: Patients and Consumers and Healthcare Professionals working parties

795 views • 28 slides
Focusing in Focus Groups Faisal Islam July 8, 2016 Funded by: 1. Orient ourselves to Focus

Focusing in Focus Groups Faisal Islam July 8, 2016 Funded by: 1. Orient ourselves to Focus

Focusing in Focus Groups Faisal Islam July 8, 2016 Funded by: 1. Orient ourselves to Focus Group Discussion 2. Understand when to use (or not use) Focus Group 3. Learn how to conduct Focus Group 4. Explore how to analyze data from

701 views • 34 slides
Apicultural NZ Technical Focus Group Apiculture NZ Technical Focus Group Submission Supports

Apicultural NZ Technical Focus Group Apiculture NZ Technical Focus Group Submission Supports

Submission APP202349 Apicultural NZ Technical Focus Group Apiculture NZ Technical Focus Group Submission Supports the reassessment where it is based on the human health risk assessment. Chlorothalinol is a widely used fungicide that

447 views • 6 slides
Focus Groups with DC Employers, Employees, and Brokers Focus Group Findings September 12, 2018

Focus Groups with DC Employers, Employees, and Brokers Focus Group Findings September 12, 2018

Focus Groups with DC Employers, Employees, and Brokers Focus Group Findings September 12, 2018 1 Background. PerryUndem conducted three focus groups to hear feedback on DC Health Link (DCHL). 1 group with 12 employers, or decision makers

323 views • 13 slides
Mylobot, Detecting the Undetected Using Deep Learning Yael Daihes 02 WHO AM I Yael Daihes

Mylobot, Detecting the Undetected Using Deep Learning Yael Daihes 02 WHO AM I Yael Daihes

01 Mylobot, Detecting the Undetected Using Deep Learning Yael Daihes 02 WHO AM I Yael Daihes Security Data Science Team Lead @ Akamai Technologies My things - Botnets, Traffic, Data, Algorithms, Reading, Painting and a bit of Gaming (:

533 views • 42 slides
Outline Morning program Preliminaries Semantic matching Learning to rank Entities Afternoon

Outline Morning program Preliminaries Semantic matching Learning to rank Entities Afternoon

Outline Morning program Preliminaries Semantic matching Learning to rank Entities Afternoon program Modeling user behavior Generating responses Recommender systems Industry insights Q & A 182 Outline Morning program Preliminaries

812 views • 42 slides
Botprize 2010 Jacob Schrum, Igor Karpov, and Risto Miikkulainen

Botprize 2010 Jacob Schrum, Igor Karpov, and Risto Miikkulainen

Botprize 2010 Jacob Schrum, Igor Karpov, and Risto Miikkulainen {schrum2,ikarpov,risto}@cs.utexas.edu Unreal Tournament 2004 Commercial videogame First Person Shooter genre Play vs. humans and bots Programming API: Pogamut

447 views • 33 slides
Alexa, can you help me? hi, how are you doing? I don't know what to do. hi, how are you doing?

Alexa, can you help me? hi, how are you doing? I don't know what to do. hi, how are you doing?

Alexa, can you help me? hi, how are you doing? I don't know what to do. hi, how are you doing? Dialog Systems Joo Sedoc jsedoc@jhu.edu Johns Hopkins Computer Science Chatbots are Ubiquitous: Personal Agents, Games, Education, Business

811 views • 62 slides
R i R 2 = C 2 + 2C 1 R = C + C i i j T j j hp (

R i R 2 = C 2 + 2C 1 R = C + C i i j T j j hp (

Last Time Today Priority-based scheduling Response time analysis Static priorities Blocking terms Dynamic priorities Priority inversion Schedulable utilization And solutions Rate monotonic rule: Keep utilization

281 views • 4 slides
19/04/2016 What does it mean? Response-time analysis conditional

19/04/2016 What does it mean? Response-time analysis conditional

19/04/2016 What does it mean? Response-time analysis conditional Response-Time Analysis DAG tasks of Conditional DAG Tasks multiprocessor systems in Multiprocessor Systems Alessandra Melani 1 2 What

660 views • 9 slides
CPU Scheduling (Chapter 7) CS 4410 Operating Systems [R. Agarwal, L. Alvisi, A. Bracy, M.

CPU Scheduling (Chapter 7) CS 4410 Operating Systems [R. Agarwal, L. Alvisi, A. Bracy, M.

CPU Scheduling (Chapter 7) CS 4410 Operating Systems [R. Agarwal, L. Alvisi, A. Bracy, M. George, E. Sirer, R. Van Renesse] The Problem Youre the cook at State Street Diner customers continuously enter and place orders 24 hours a day

628 views • 31 slides
Intuitive Generosity and Error Prone Inference from Response Time Mara P. Recalde 1 Arno Riedl 2

Intuitive Generosity and Error Prone Inference from Response Time Mara P. Recalde 1 Arno Riedl 2

Intuitive Generosity and Error Prone Inference from Response Time Mara P. Recalde 1 Arno Riedl 2 Lise Vesterlund 1 1 University of Pittsburgh 2 Maastricht University October 18, 2013 Motivation When called upon to help others, is our

746 views • 28 slides

More recommend