7 Matching Annotations
  1. Nov 2019
    1. In a written response, FERC officials said that the agency did not conduct an assessment to determine how the leading practices identified in the NIST Cybersecurity Framework could be applied to the cybersecurity standards.


    2. Risk assessment◕Risk management strategy○Supply chain risk management◑

      okay, answer to previous question above.

    3. Risk assessment

      Note the differences between risk assessment and risk management. The project would look towards risk assessment and then migrate its focus to risk management potentially, but what then? and how will this transition be smooth/original?

    4. none of them analyzed the threat of, and vulnerabilities to, a cyberattack spanning all three interconnections.


    5. Problem definition and risk assessment

      nice nice

    6. Problem definition and risk assessment.Addresses the particular national problems, assesses the risks to critical assets and operations—including the threats to, and vulnerabilities of, critical operations—and discusses the quality of data available regarding the risk assessment.

      This is the crux of what I should be looking at I guess This is in regards to national strategies. Is this what I need to do?

    7. DOE and DHS also offer services aimed at helping grid owners and operators assess cybersecurity risks and perform forensic analysis.

      Look into what these services are. Evaluating how effective these risk assessments are?