cip violation data trends 2012 2015
play

CIP Violation Data Trends 2012-2015 Deandra Williams-Lewis - PowerPoint PPT Presentation

Feb 03, 2023 •25 likes •175 views

CIP Violation Data Trends 2012-2015 Deandra Williams-Lewis Violation Volume Decreasing CIP Violations by Deemed Date 2015 53 2014 92 2013 91 2012 153 2011 165 2010 259 0 50 100 150 200 250 300 2010: Mandatory Compliance

  1. CIP Violation Data Trends 2012-2015 Deandra Williams-Lewis

  2. Violation Volume Decreasing CIP Violations by Deemed Date 2015 53 2014 92 2013 91 2012 153 2011 165 2010 259 0 50 100 150 200 250 300  2010: Mandatory Compliance for all CIP Standards Begins; RF commences full scope audits; Entities at beginning stages of CIP implementation  2015: Maturation of CIP programs; Increased use of automated tools; increased outreach Forward Together • ReliabilityFirst

  3. Majority of Violations are Self-Reported  Larger Entities Drive Volume of Self-Reports  Two audit outliers in 2014 responsible for 92 of 117 audit violations, otherwise steady downward trend Forward Together • ReliabilityFirst

  4. Volume Driven by High-Frequency Conduct  Requirements concerning “high-frequency conduct” drive volume CIP-004, R4 ( access: lists for cyber access and physical access; revoking privileges) CIP-006, R1 ( physical security of critical cyber assets: physical access logging) CIP-007, R5 ( account management: passwords and access lists)  These violations tend to be self-reported and pose a lesser risk  However, can be indicative of systemic issues Forward Together • ReliabilityFirst

  5. Detection and Reporting Duration Impovement  Decrease between Deemed and Reporting Dates  Average 317 decrease in days (trending downward) * Includes noncompliance start date, time to identify, assess, correct, and then report 5 Forward Together • ReliabilityFirst

  6. Improved Risk Posture  Year-over-year decrease in severity  75% of CIP violations are Minimal to Moderate risk  9% of CIP violations are serious risk • implementation issues • culture and programmatic issues Forward Together • ReliabilityFirst

  7. Volume Driven by Larger Entities  Larger entities have experienced initial implementation challenges  More assets, business units, and people = more challenges • 100% of serious risk issues concern larger entities • 93.3% of audit findings concern larger entities • 79.8% of all violations driven by large entities  CIP Themes Report: identified and shared common themes 7 Forward Together • ReliabilityFirst

  8. Observations  Possible Drivers of Positive Trending • Maturation (both RF and Entities) • Active Monitoring and Enforcement • Trending, Analytics, and Sharing ‒ Assist Visits and Outreach ‒ CIP Themes Report ‒ Case Study Outreach  Remain Vigilant – Moving Target  Dynamic Regulatory Approach ‒ Focus on continuous improvement ‒ Violations not always indicative of security state • Volume can indicate strong detective controls or weak preventative/corrective controls • Paper compliance does not equal security 8 Forward Together • ReliabilityFirst

  9. Common CIP Themes Patrick O’Connor

  10. Purpose of CIP Themes Report  IDENTIFY • Common themes underlying systemic CIP violations. • Possible resolutions ‒ Not directive because “one size does not fit all” • Based on RF’s observations through years of compliance monitoring and enforcement activities ‒ Collaborated with entities that dealt with higher risk CIP Violations ‒ In coordination with NERC  COMMUNICATE • Raise awareness and prevent recurrence ‒ Report available on RF’s website 10 Forward Together • ReliabilityFirst

  11. The Identified CIP Themes 11 Forward Together • ReliabilityFirst

  12. Scenario #1  Entity implemented tools to monitor its account usage. • Entity did not configure these properly, causing voluminous logs that could not be meaningfully digested.  Entity implemented tool to automatically generate revocation notices. • Responsible employee did not review notifications and thus did not perform necessary revocations. 12 Forward Together • ReliabilityFirst

  13. Scenario #2  Entity utilized a vendor’s asset management system. • Protecting Critical Cyber Asset Information was not considered nor mentioned in the vendor contract.  Entity contracted with vendor to provide security patch management. • Vendor did not provide entity with timely assessments of patch releases. 13 Forward Together • ReliabilityFirst

  14. Scenario # 3  Entity used its mirrored-back-up  Entity permitted compromised data center constituted as its assets to communicate freely disaster recovery data center. with command and control server. • Entity did not understand that corruption of the main data center • Entity did not understand firewall would promptly result in a commands (“permit any any” on corrupted back-up data center. outbound traffic). 14 Forward Together • ReliabilityFirst

  15. Questions & Answers Forward Together ReliabilityFirst 15 Forward Together • ReliabilityFirst

Recommend

Business Trends for the U.S. Defense Enterprise $700 Declining Revenue Trends $600 PB 2012 PB

Business Trends for the U.S. Defense Enterprise $700 Declining Revenue Trends $600 PB 2012 PB

Business Trends for the U.S. Defense Enterprise $700 Declining Revenue Trends $600 PB 2012 PB 2013 PB 2016 PB 2014 $500 PB 2015 Actuals $Billion, TY $400 Ten-Year s (FY12-23) PB12 to PB13: - $500B $300 PB13 to PB14: - $80B

276 views • 8 slides
Lepton flavour violation: a phenomenological overview Ana M. Teixeira Laboratoire de Physique

Lepton flavour violation: a phenomenological overview Ana M. Teixeira Laboratoire de Physique

Lepton flavour violation: a phenomenological overview Ana M. Teixeira Laboratoire de Physique Corpusculaire, LPC Clermont What is ? INVISIBLES 2012 GGI, Firenze, 26 June 2012 Lepton Flavour Violation: LFV@2012 What

405 views • 40 slides
Pulsar Realtime Analytics At Scale Tony Ng April 14, 2015 Big Data Trends Bigger data

Pulsar Realtime Analytics At Scale Tony Ng April 14, 2015 Big Data Trends Bigger data

Pulsar Realtime Analytics At Scale Tony Ng April 14, 2015 Big Data Trends Bigger data volumes More data sources DBs, logs, behavioral & business event streams, sensors Faster analysis Next day to hours to minutes to

496 views • 24 slides
Trends in Data Security and Privacy Li7ga7on and Insurance 2015 Verizon Data Breach Report

Trends in Data Security and Privacy Li7ga7on and Insurance 2015 Verizon Data Breach Report

4/16/16 Trends in Data Security and Privacy Li7ga7on and Insurance 2015 Verizon Data Breach Report 79,790 security incidents 2,122 confirmed data breaches Top industries affected: Public, Informa7on, and Financial Services (same as

181 views • 14 slides
28 th May 2015 Why are we here? Source: ONS 2012-Based National Population Projections 10,000

28 th May 2015 Why are we here? Source: ONS 2012-Based National Population Projections 10,000

Financial Services and the Privatisation of Risk Trajectory Trends Breakfast 28 th May 2015 Why are we here? Source: ONS 2012-Based National Population Projections 10,000 15,000 20,000 25,000 30,000 5,000 0 2012 12,280 2013 2014 2015

700 views • 34 slides
500 Lives October 2015 Mark Juniper 500 lives calculation: 2012 to 2015 Mortality Trends

500 Lives October 2015 Mark Juniper 500 lives calculation: 2012 to 2015 Mortality Trends

500 Lives October 2015 Mark Juniper 500 lives calculation: 2012 to 2015 Mortality Trends - Actual & HSMR 140 130 120 110 100 90 80 70 60 Apr-12 May-12 Jun-12 Jul-12 Aug-12 Sep-12 Oct-12 Nov-12 Dec-12 Jan-13 Feb-13

420 views • 7 slides
0 mixing D 0 D mixing in D 0 meson system considerably smaller than in K 0 , B 0 0 y | D 0

0 mixing D 0 D mixing in D 0 meson system considerably smaller than in K 0 , B 0 0 y | D 0

BELLE SEARCH FOR CP VIOLATION IN D 0 KK , , K AND D 0 0 0 Tara Nanut on behalf of the Belle Collaboration 7th International Workshop on Charm Physics May 2015 1 { 17 Search for CP violation in D 0 KK , , K and D 0

928 views • 17 slides
Oral Care Trends 2012 Key Trends 2 2 Innovation keeps consumers interested and intrigued, and

Oral Care Trends 2012 Key Trends 2 2 Innovation keeps consumers interested and intrigued, and

Oral Care Trends 2012 Key Trends 2 2 Innovation keeps consumers interested and intrigued, and drives desire. Credible product development within brands can support huge growth Apple being a fine example of this. A constant stream of new

724 views • 35 slides
Overview Accident Trends Global / Asia Pacific Five Year Summary / 2012 Flight Data

Overview Accident Trends Global / Asia Pacific Five Year Summary / 2012 Flight Data

Flight Data Exchange A Global Approach to Local Risks Tony Houston Assistant Director Safety IATA Asia Pacific Overview Accident Trends Global / Asia Pacific Five Year Summary / 2012 Flight Data Aviations most important safety

673 views • 34 slides
The Statistics of Dirty Data Sanjay Krishnan coax treasure out of messy, unstructured data 204

The Statistics of Dirty Data Sanjay Krishnan coax treasure out of messy, unstructured data 204

The Statistics of Dirty Data Sanjay Krishnan coax treasure out of messy, unstructured data 204 papers since 2012 in VLDB, ICDE, SIGMOD ( dirty data ) The Database Perspective Dirty data is a violation of constraints on a table. Data

961 views • 57 slides
Building on Trends in Citrus in North America ICBC - 2014 FlavourVision TM 2012 Beverage Trends

Building on Trends in Citrus in North America ICBC - 2014 FlavourVision TM 2012 Beverage Trends

Building on Trends in Citrus in North America ICBC - 2014 FlavourVision TM 2012 Beverage Trends FlavourVision TM 2013 Beverage Trends Signature Happy Excited All Family Refreshing All American Honey Simpler Labels Kids Arnold Palmer

202 views • 19 slides
CP violation in h Z UMass Amherst May 2, 2015 Marco Farina Cornell University First

CP violation in h Z UMass Amherst May 2, 2015 Marco Farina Cornell University First

CP violation in h Z UMass Amherst May 2, 2015 Marco Farina Cornell University First look The Higgs looks quite SM like PDG Review (Nov 2013) Introduction How well at the end of LHC? Snowmass Higgs Working Group Report 1310.8361

282 views • 25 slides
CULTURAL ACCESS September 18, 2015 Trends Regulatory Non-regulatory The Future

CULTURAL ACCESS September 18, 2015 Trends Regulatory Non-regulatory The Future

9/21/2015 TRENDS IN CULTURAL ACCESS September 18, 2015 Trends Regulatory Non-regulatory The Future Trends Regulatory 1 9/21/2015 2010 Revised ADA Regulations 1. Service Animal 2. Mobility Device 3. Ticketing 4. 2010 Standards 5.

359 views • 6 slides
General Relativity Dr Mark Hadley Parity Violation. The biggest scientific blunder of the 20

General Relativity Dr Mark Hadley Parity Violation. The biggest scientific blunder of the 20

Explaining CP violation using General Relativity Dr Mark Hadley Parity Violation. The biggest scientific blunder of the 20 th century Plan Motivation Parity and Parity violation a fresh look CP violation a brief look

459 views • 34 slides
2017 BUDGET PRESENTATION GENERAL FINANCIAL DATA AND TRENDS Don Coppock 1 RETAIL ELECTRIC SALES

2017 BUDGET PRESENTATION GENERAL FINANCIAL DATA AND TRENDS Don Coppock 1 RETAIL ELECTRIC SALES

2017 BUDGET PRESENTATION GENERAL FINANCIAL DATA AND TRENDS Don Coppock 1 RETAIL ELECTRIC SALES $50,000,000 $40,000,000 $30,000,000 $20,000,000 $10,000,000 2012 Actuals 2013 Actuals 2014 Actuals 2015 Actuals 2016 Projected 2017

501 views • 35 slides
E-TRENDS ARABNET 2014 IYAD KAMAL IY AD@ ARAMEX.COM IY AD KAMAL @ IY ADKAM E-TRENDS

E-TRENDS ARABNET 2014 IYAD KAMAL IY AD@ ARAMEX.COM IY AD KAMAL @ IY ADKAM E-TRENDS

E-TRENDS ARABNET 2014 IYAD KAMAL IY AD@ ARAMEX.COM IY AD KAMAL @ IY ADKAM E-TRENDS BUSINESS TRENDS P AYMENTS RETURNS SOCIAL TRENDS LAST MILE SOLUTION BUSINESS TRENDS THE MIXER E-TRENDS INCLUDE MIXED DATA FROM : SHOP AND SHIP

925 views • 28 slides
Current Status of a Measurement of Hadronic Parity Violation in the Capture of Cold Neutrons on

Current Status of a Measurement of Hadronic Parity Violation in the Capture of Cold Neutrons on

Current Status of a Measurement of Hadronic Parity Violation in the Capture of Cold Neutrons on Helium-3 for the n3He Collaboration Mark McCrea University of Manitoba 2015 CAP Congress June 18, 2015 Introduction Motivation Spallation

588 views • 22 slides
Trends in proton therapy 2012-15 Results of the NAPT survey William F. Hartsell, M.D NAPT Survey

Trends in proton therapy 2012-15 Results of the NAPT survey William F. Hartsell, M.D NAPT Survey

Trends in proton therapy 2012-15 Results of the NAPT survey William F. Hartsell, M.D NAPT Survey Tool Proton Therapy Centers in the US - 2015 WA 2013 ME MT ND 2002 OR VT MN NH ID WI SD MI NY MA RI 2015 CT WY 2012 PA IA NJ

202 views • 16 slides
CP Violation Measurements CP Violation Measurements in Hadronic B Decays y at Belle Takeo

CP Violation Measurements CP Violation Measurements in Hadronic B Decays y at Belle Takeo

1 CP Violation Measurements CP Violation Measurements in Hadronic B Decays y at Belle Takeo Higuchi Institute of Particle and Nuclear Studies, KEK The Belle Collaboration Sep.1,2010 T.Higuchi (KEK) 2 B-Factories in the World Accelerator

588 views • 48 slides
Statistical significance in CP violation Mattias Blennow emb@kth.se KTH Theoretical Physics

Statistical significance in CP violation Mattias Blennow emb@kth.se KTH Theoretical Physics

Statistical significance in CP violation Mattias Blennow emb@kth.se KTH Theoretical Physics June 22, 2015, Invisibles 15, Madrid, Spain Mattias Blennow KTH Theoretical Physics Statistical significance in CP violation Parameter estimation

459 views • 15 slides
CPANDT CPANDT M.S.Sozzi M.S.Sozzi VIOLATION VIOLATION

CPANDT CPANDT M.S.Sozzi M.S.Sozzi VIOLATION VIOLATION

CPANDT CPANDT M.S.Sozzi M.S.Sozzi VIOLATION VIOLATION UniversityofPisa UniversityofPisa WITHKMESONS WITHKMESONS August 30 th , 2007 - Time and Matter 2007 - Bled, Slovenia Outline

873 views • 61 slides
WIN INE IN INTELLIGENCE GLOBAL CONSUMER TRENDS & THE WIN INE CATEGORY 2015 2015 Lulie

WIN INE IN INTELLIGENCE GLOBAL CONSUMER TRENDS & THE WIN INE CATEGORY 2015 2015 Lulie

WIN INE IN INTELLIGENCE GLOBAL CONSUMER TRENDS & THE WIN INE CATEGORY 2015 2015 Lulie Hal Lu alstead CE CEO, Wine Inte Intellig igence th Mar Tuesday 17 17 th arch 20 2015 1 Instant Activate Sensory Localism Custom Fusion

459 views • 32 slides
Outline SE Neonatal ODN data and trends Term admission audit 2015: process & results

Outline SE Neonatal ODN data and trends Term admission audit 2015: process & results

South East Neonatal Operational Delivery Networks Hosted by Medway Foundation Trust ATAIN - experience from South East Neonatal ODN Vanessa Attrell Neonatal Network Manager 17 th October 2018 Outline SE Neonatal ODN data and trends Term

587 views • 30 slides
Better Data, Better Decisions June 11, 2012 Webinar CTA CONFERENCE 2015 HOW TO MANAGE &

Better Data, Better Decisions June 11, 2012 Webinar CTA CONFERENCE 2015 HOW TO MANAGE &

Better Data, Better Decisions June 11, 2012 Webinar CTA CONFERENCE 2015 HOW TO MANAGE & LEVERAGE THE DATA WE HAVE How to Manage & Leverage the Data We Have DATA OVERLOAD TO INFORMATION PAST How We Reported TODAY What Is

335 views • 17 slides

More recommend