Metric Challenges Bheshaj Krishnappa Risk Analysis & Mitigation - - PowerPoint PPT Presentation
Metric Challenges Bheshaj Krishnappa Risk Analysis & Mitigation About RF ReliabilityFirst preserves and enhances bulk power system reliability and security across 13 states and the District of Columbia. The Boundaries of
Forward Together • ReliabilityFirst
2
ReliabilityFirst preserves and enhances bulk power system reliability and security across 13 states and the District of Columbia. The Boundaries of ReliabilityFirst include all of New Jersey, Delaware, Pennsylvania, Maryland, District of Columbia, West Virginia, Ohio, Indiana, Lower Michigan and portions of Upper Michigan, Wisconsin, Illinois, Kentucky, Tennessee and Virginia.
Forward Together • ReliabilityFirst
3
Management Controls, Personnel & Training, Electronic Security Perimeter(s), Physical Security of BES Cyber Systems, Systems Security Management, Incident Reporting and Response Planning, Recovery Plans for BES Cyber Systems, Configuration Change Management and Vulnerability Assessments, Information Protection and Physical Security
1 2 9 4 6 12 1 5 2 4 6 8 10 12 14 CIP-002 - Critical Cyber Asset Identification CIP-003 - Security Management Controls CIP-004 - Personnel and Training CIP-005 - Electronic Security Perimeter(s) CIP-006 - Physical Security CIP-007 - Systems Security Management CIP-008 - Incident Reporting and Response Planning CIP-009 - Recovery Plans for Critical Cyber Assets
CIP standard violations (representative chart)
Forward Together • ReliabilityFirst
4
Program Management (CYBER), Asset, Change, and Configuration Management (ASSET), Information Sharing and Communications (SHARING), Identity and Access Management (ACCESS), Threat and Vulnerability Management (THREAT), Event and Incident Response, Continuity of Operations (RESPONSE), Risk Management (RISK), Situational Awareness (SITUATION), Workforce Management (WORKFORCE)
333 591 550 550 275 515 344 162 657 1685 2611 2465 2465 1085 2378 1309 686 2692
500 1000 1500 2000 2500 3000 Risk Management (RISK) Identity and Access Management (ACCESS) Situational Awareness (SITUATION) Event and Incident Response, Continuity
(RESPONSE) Cybersecurity Program Management (CYBER) CIP VIolations
Comparison chart of ES C2M2 domains in RFC region against all of NERC (representative chart)
RFC NERC
Forward Together • ReliabilityFirst
‒ Violation history based on audits ‒ Cyber assets and vulnerabilities
5
Forward Together • ReliabilityFirst
approaches
build upon
etc.,
Management Model to derive resilience metrics
6
Forward Together • ReliabilityFirst
7