SANS Industrial Control Systems Security Blog: Tag - CIP-008

ES-ISAC Changes Require Plan Updates

Did you hear about the NERC registered entity that got a PV for failing to update the Cyber Security Incident response plan within thirty calendar days of a change? How about the registered entity that got a PV because they didn't notify the ES-ISAC of a Reportable Cyber Security Incident? Well if you don't act … Continue reading ES-ISAC Changes Require Plan Updates