Complimentary webinar: Best Practices in Designing and Implementing a NERC-CIP Compliance Program

Instructors: Anna Wang, Brenda Boultwood
Product ID: 702935
  • Duration: 60 Min

recorded version

1x Person - Unlimited viewing for 6 Months
(For multiple locations contact Customer Care)
Recorded Link and Ref. material will be available in My CO Section

Customer Care

Fax: +1-650-963-2556


Read Frequently Asked Questions

Why Should You Attend:

Energy & Utility companies face increasing number of compliance risks and penalties due to non-compliance of NERC CIP version 3 Standards. Of the Top 10 standards violated, 3 of them are from NERC 004, 006 and 007. NERC-CIP includes requirements for frameworks for identifying critical cyber assets, managing security controls, conducting training programs for authorized personnel, maintaining electronic security perimeter(s) and physical security for assets, and cyber incidents and recovery plans.

With organizations rolling out smart grids and increasingly relying on computer-based controls, automated systems and software solutions like SCADA and ICS to manage and monitor wide variety of legacy systems, generation and transmission networks, the number and complexity of cyber risks, threats and vulnerabilities are exponentially increasing. This ultimately leads to increasing number of NERC-CIP violations and compliance gaps.

Energy & Utility companies need to create a compliance project management office (PMO) specifically for NERC-CIP compliance and adopt comprehensive sustainable NERC-CIP compliance programs with proper management support to promote a culture of compliance within the organization for the Version 4 and 5 requirement changes.

Key Discussion Points are:

  • Methodologies, policies and procedures at site and corporate level
  • Standardize processes, adopt and implement auditable security controls
  • Facilitate risk and control assessments, audits and reporting mechanisms
  • Track critical cyber assets in accordance with NERC CIP-002-4
  • Manage and track employee training information

Instructor Profile:

Anna Wang, Senior Cyber Security Consultant, Burns and McDonnell. Ms. Wang is a member of IEEE Power & Energy Society, Women in Engineering, and Reliability Society. She is recognized by the National Association of Professional Women as the 2011/2012 Woman of the Year for demonstrating excellence and dedication within her profession. Ms. Wang has been a Senior Cyber Security and NERC Compliance Consultant at Burns & McDonnell since 2010. She has nine years of electrical utility experience, including regulatory compliance, critical infrastructure protection, transmission reliability and operations, business continuity and security architecture evaluation with Tri-State Generation and Transmission Association and American Electric Power. Her area of expertise includes NERC Reliability and Standards Compliance, NEI Cyber Security Controls, NIST Risk Management Framework and Smart Grid Cyber Security, AURORA Mitigation, International Instrument Users' Association (WIB) Industrial Control System Cyber Security Guideline, ISA99, Substation Automation, and Consumer Privacy Protection. Ms. Wang received her Master’s degree of Information Science from the University of Illinois at Urbana-Champaign. She is a Certified Competitive Intelligence Professional.

Brenda Boultwood, Vice President of Industry Solutions, MetricStream. Before joining MetricStream Ms. Boultwood was Senior Vice President and Chief Risk Officer for Constellation Energy where she led risk management activities for Constellation Energy and its businesses, including defining and assessing enterprise-wide business risks and facilitating proactive decision-making to effectively manage the risks associated with each business line. Prior to joining Constellation Energy, Ms. Boultwood served as Global Head of Strategy, Alternative Investment Services for J.P. Morgan Chase & Company, where she was responsible for developing strategy for the company's Hedge Fund Services, Private Equity Fund Services, Leveraged Loan Services and Global Derivative Services business lines. Ms. Boultwood also worked with PricewaterhouseCoopers as a senior manager in its Financial Risk Management Consulting Practice and was employed with Chemical Bank Corporation as a financial engineering associate. In addition, she spent six years teaching in the University of Maryland's Master of Business Administration program.

Ms. Boultwood is a member of the CFTC Technology Advisory Committee, and serves on the Boards of Committee of Chief Risk Officers (CCRO). She previously served as Board Member of Global Association of Risk Professionals (GARP). She earned a Ph.D. in economics from the City University of New York.

Follow us :
ComplianceOnline Banking Summit 2016 | Risk Management and Data Security - 80390SEM
21 CFR Part 11 Compliance for SaaS/Cloud Applications - 80202SEM

Product Reviews

This product hasn't received any reviews yet. Be the first to review this product! Write review

Best Sellers
You Recently Viewed