NERC CIP Version 5 Foundations Course – Salt Lake City, UT – February 6, 2014

 EnergySec/NESCO Members receive a 30% discount. Click here to obtain your discount code(s) for 2014 events.

SEATS ARE LIMITED TO THE FIRST 30 REGISTRATIONS

We have group rates!*  Please call 877-267-4732 to receive a group rate code.

Group Size      Discount
4-7       5%
8-11      10%
12 or more      15%

* Does not apply to already discounted options such as the NESCO Member discount.

Venue:

Courtyard Salt Lake City Airport, 4843 W Douglas Corrigan Way, Salt Lake City, UT | 1-801-532-4085

Day 1 – NERC CIP Version 5 Foundations Course

For many, CIP Version 3 has become rote knowledge – the terms, requirements and approaches are well engrained into their day-to-day activities. CIP Version 5 is a dramatic change that is likely to challenge even the most seasoned CIP compliance professional.

EnergySec’s team of experts, with years of relevant industry experience in cyber security and NERC CIP auditing, have created this one-day course to prepare you for the transition to CIP version 5. This course is perfect for both seasoned NERC CIP professionals seeking to ensure a smooth transition to version 5, as well as those new to NERC CIP who wish to jump start the learning process on these important standards.

Attendees will come away from this one-day course prepared to face version 5. In this course we will:

  • Explain the 19 terms with new or revised definitions and other important terms that are still undefined
  • Describe the 13 categories of assets to which requirements apply
  • Explain the new bright line criteria and the three tier (High/Medium/Low) approach to asset classification
  • Walk through a detailed mapping and discussion of the new, revised, and retired requirements
  • Discuss the two new standards in version 5
  • Explore future changes that may result from the FERC Order on version 5
  • Provide references and discussion on the pertinent NERC filings and FERC rulings on these standards

Join us for an incredible opportunity to help prepare your organization for NERC CIP Version 5 compliance. All attendees will receive full printed and electronic copies of the course materials, plus free access to future versions of the course for a period of 12 months and access to the course alumni email discussion forums. Course materials are regularly reviewed and updated to reflect the latest NERC guidance, formal interpretations, FERC rulings, regional audit approaches, and other relevant items.

COURSE OUTLINE

Structural Changes

Version 5 has significant changes in the format and layout of the standards. This unit provides an explanation of the new format, table-based requirements and applicability sections, measures, and the guidelines and technical basis sections.

Implementation Plan

This unit will cover the V5 implementation plan explaining the timelines for compliance for various types of facilities, BES Cyber Systems, and impact levels.

Documentation, Measures, and Evidence

Version 5 has eliminated some explicit documentation requirements, but also added specific measures by which compliance may be assessed. This unit will explain the necessary modifications.

Terminology

There are 19 new or revised definitions of terms used in version 5. This unit will provide an explanation of how these changes will affect you existing compliance activities..

Cyber Asset Categories

Requirements in version 5 contain an applicability table listing the categories of assets that are in scope for that requirement. This unit explains how existing programs will need to adjust to handle the 13 categories of assets to which requirements apply.

Bright Lines and Asset Identification

Version 5 employs a radically different approach to identifying and categorizing cyber assets. The previously used RBAM approach is gone, replaced by bright line criteria and a three-tier approach to asset categorization. This unit explains the new process.

Things You Can Stop Doing

Many requirements have undergone significant changes in version 5. Additionally, FERC recently approved retirement of some existing standards. This unit will detail compliance activities which may no longer be needed.

Things You Need to Start Doing

Version 5 contains two new standards and a number of significantly modified requirements. This unit will introduce these standards and explain the new, modified, and relocated requirements to provide an understanding of new activities that will be required to comply with version 5.

Things You Need to do Differently

Version has updated many existing requirements. This unit discusses adjustments you may need to make to your existing programs and processes.

Future Changes

In the order approving V5, FERC ordered NERC to make modifications in several areas. This unit will discuss the required changes, and explain how these changes may affect future compliance efforts.

 

Instructor Biographies

Steve ParkerSteven  Parker – CISSP, CISA | EnergySec

Steven Parker, CISA, CISSP, is the EnergySec Vice President of Technology Research and Projects.with the Energy Sector Security Consortium (EnergySec).  He was part of the grassroots effort that led to the formation of EnergySec, and has served on its board of directors since 2008.

Steven’s experience includes more than a decade of full-time security work at critical infrastructure organizations including the Western Electricity Coordinating Council, PacifiCorp, and US Bank.  He has contributed to a broad range of security projects covering areas such as e-commerce, identity management, intrusion detection, forensics, and security event monitoring.

 

 

CANCELLATION

Any cancellations received more than one month before the start of the session will be refunded 50% of the tuition of the course registered.  Any cancellations that are received less than one month before the start of the session, will not be eligible for a refund.  The cancellation must be sent in writing to info@energysec.org or to EnergySec, 8440 SE Sunnybrook Blvd Suite 206, Clackamas OR 97015.

POSTPONEMENT

One postponement without a penalty fee is permitted. Any further request for postponement will receive a refund of 50% of the course tuition and new registration will be mandatory at a session date in the same calendar year.

Tags: , , , , , , , , , , , , , , , , ,

Comments are closed.