“Based on these results, only 30 percent of the industry feel they lack a clear understanding of the standards,” said Patrick Miller, partner and managing principal at The Anfield Group, a critical infrastructure security and compliance consultancy. “In reality, I think that number is higher. After we dig into the details and actually start implementing and auditing NERC CIPv5, I suspect many will realize their initial degree of understanding was overly optimistic.”
Key findings include:
- 70 percent believe they have a clear understanding of all the current NERC CIP requirements.
- 77 percent believe NERC CIP compliance is necessary to ensure the cybersecurity of the Bulk Electric System.
- 70 percent, however, do not believe that NERC CIP compliance is sufficient to ensure the cybersecurity of the Bulk Electric System.