NERC and Regional Entities Submit Comments on Cybersecurity Incentives NOPR

On April 6, 2021, in Docket No. RM21-3-000, NERC and the Regional Entities (collectively, the ERO) submitted comments on a Notice of Proposed Rulemaking (NOPR) regarding cybsersecurity incentives. The NOPR proposes revisions to FERC regulations to establish rules for incentive-based rate treatments for voluntary cybersecurity investments for a public utility for or in connection with the transmission or sale of electric energy subject to the jurisdiction of the Commission. Specifically, the Commission seeks comment on two approaches to granting these incentives: (1) voluntarily applying a higher level of the Critical Infrastructure Protection (CIP) Reliability Standards; or (2) implementing certain security controls included in the National Institute of Standards and Technology (NIST) Framework. The ERO’s comments request that FERC consider: (1) any role the ERO Enterprise may have in monitoring or reviewing applications and subsequent reports for these incentives; (2) the impact on ERO Enterprise operations; and (3) other details that may impact the ERO Enterprise activities.

To view the filing, click here.