The Federal Energy Regulatory Commission (FERC) issued Order No. 829 last July that put into motion the development of rules to impose new cyber-security standards for all firms in the energy supply chain – including engineering firms.
Firms that include specified industrial control systems in designs, or make use of required software in serving energy supply chain clients, could face increased liability simply by using or specifying technologies over which they may have no control. (These new rules could eventually apply to a broader array of federal agencies and programs –further deepening the impact on engineering firms like yours.)
Join Joel deJesus, the former Director of Enforcement at the North American Electric Reliability Corporation (NERC) and energy regulatory law expert, to get valuable insight into the potential challenge of the new cyber-security standards and where the development process is likely headed. Attendees will be briefed on:
- How FERC, and related efforts by NERC, the National Institute of Standards and Technology (NIST), and the Department of Energy are driving new cyber security performance requirements in contracts for engineering services;
- The software, hardware, and other technologies subject to the new contract requirements and the associated liability impact to firms;
- What your firm will need to do to qualify for work where new supply chain cyber security requirements apply;
- How these new standards, initially for the electricity sector, will likely to be adopted more broadly in other sectors where industrial control systems are deployed.
WHO SHOULD ATTEND:
- Firms currently operating in the energy sector, along with other governmental clients who may be subject to the expanded cyber-security rules.