On November 21, 2019, the Federal Energy Regulatory Commission (FERC) staff gave a presentation on the key priorities needed to address cybersecurity challenges facing the nation’s energy infrastructure.
The detailed presentation identified five areas upon which FERC staff plan to focus: Supply Chain/Insider Threat/Third-Party Authorized Access; Industry access to timely information on threats and vulnerabilities; Cloud/Managed Security Service Providers; Adequacy of security controls; and, Internal network monitoring and detection.
In addition to those areas, the staff presentation suggested organizational changes in an effort to use the agency’s resources more efficiently and proposed outreach activities and initiatives throughout 2020.
See FERC’s News Release here: https://elibrary.ferc.gov/idmws/file_list.asp?accession_num=20191121-3057