FERC-725B, (Final Rule in RM18-20) Mandatory Reliability Standards for Critical Infrastructure Protection [CIP] Reliability Standards)

ICR 202002-1902-002

OMB: 1902-0248

Federal Form Document

Forms and Documents
Document
Name
Status
Supporting Statement A
2020-03-31
Supplementary Document
2020-02-11
Supplementary Document
2020-02-06
Supplementary Document
2020-02-06
Supplementary Document
2018-05-02
Supplementary Document
2018-05-02
ICR Details
1902-0248 202002-1902-002
Active 201810-1902-007
FERC FERC-725B
FERC-725B, (Final Rule in RM18-20) Mandatory Reliability Standards for Critical Infrastructure Protection [CIP] Reliability Standards)
Revision of a currently approved collection   No
Regular
Approved with change 04/06/2020
Retrieve Notice of Action (NOA) 02/13/2020
Because the agency sought comments only on the changes associated with the regulation, the existing expiration date remains the same for this collection. In accordance with 5 CFR 1320, the information collection is approved. When submitting renewal packages for OMB Control No. 1902-0248, FERC should seek comments from the public on the burden associated with this collection and respond to those comments in its submission to OMB.
  Inventory as of this Action Requested Previously Approved
12/31/2021 36 Months From Approved 12/31/2021
224,800 0 223,362
2,119,709 0 1,996,520
0 0 0

Final Rule in RM18-20. Pursuant to section 215(d)(2) of the Federal Power Act (FPA), the Commission approves Reliability Standard CIP-012-1 (Cyber Security – Communications between Control Centers). The North American Electric Reliability Corporation (NERC), the Commission-certified Electric Reliability Organization (ERO), submitted Reliability Standard CIP-012-1 for Commission approval in response to a Commission directive in Order No. 822. In Order No. 822, the Commission directed NERC, pursuant to section 215(d)(5) of the FPA, to develop modifications to the Reliability Standards to require responsible entities to implement controls to protect, at a minimum, communications links and sensitive bulk electric system data communicated between bulk electric system Control Centers “in a manner that is appropriately tailored to address the risks posed to the bulk electric system by the assets being protected (i.e., high, medium, or low impact).”

US Code: 18 USC 824o Name of Law: Federal Power Act
   PL: Pub.L. 109 - 58 1211, Title XII, Subtitle A Name of Law: Energy Policy Act of 2005
  
None

1902-AF64 Final or interim final rulemaking 85 FR 7197 02/07/2020

No

  Total Approved Previously Approved Change Due to New Statute Change Due to Agency Discretion Change Due to Adjustment in Estimate Change Due to Potential Violation of the PRA
Annual Number of Responses 224,800 223,362 0 1,438 0 0
Annual Time Burden (Hours) 2,119,709 1,996,520 0 123,189 0 0
Annual Cost Burden (Dollars) 0 0 0 0 0 0
Yes
Miscellaneous Actions
No
Consistent with the directive in Order No. 822, Reliability Standard CIP-012-1 improves upon the currently-effective Critical Infrastructure Protection (CIP) Reliability Standards to mitigate cyber security risks associated with communications between bulk electric system Control Centers. Specifically, Reliability Standard CIP-012-1 supports situational awareness and reliable bulk electric system operations by requiring responsible entities to protect the confidentiality and integrity of Real-time Assessment and Real-time monitoring data transmitted between bulk electric system Control Centers. Accordingly, the Commission approves Reliability Standard CIP-012-1 because it is largely responsive to the Commission’s directive in Order No. 822 and improves the cyber security posture of responsible entities.

$4,832
No
    No
    No
No
No
No
Uncollected
Vincent Le 202 502-6204 vincent.le@ferc.gov

  No

On behalf of this Federal agency, I certify that the collection of information encompassed by this request complies with 5 CFR 1320.9 and the related provisions of 5 CFR 1320.8(b)(3).
The following is a summary of the topics, regarding the proposed collection of information, that the certification covers:
 
 
 
 
 
 
 
    (i) Why the information is being collected;
    (ii) Use of information;
    (iii) Burden estimate;
    (iv) Nature of response (voluntary, required for a benefit, or mandatory);
    (v) Nature and extent of confidentiality; and
    (vi) Need to display currently valid OMB control number;
 
 
 
If you are unable to certify compliance with any of these provisions, identify the item by leaving the box unchecked and explain the reason in the Supporting Statement.
02/13/2020


© 2024 OMB.report | Privacy Policy