Because the
agency sought comments only on the changes associated with the
regulation, the existing expiration date remains the same for this
collection. In accordance with 5 CFR 1320, the information
collection is approved. When submitting renewal packages for OMB
Control No. 1902-0248, FERC should seek comments from the public on
the burden associated with this collection and respond to those
comments in its submission to OMB.
Inventory as of this Action
Requested
Previously Approved
12/31/2021
36 Months From Approved
12/31/2021
224,800
0
223,362
2,119,709
0
1,996,520
0
0
0
Final Rule in RM18-20. Pursuant to
section 215(d)(2) of the Federal Power Act (FPA), the Commission
approves Reliability Standard CIP-012-1 (Cyber Security –
Communications between Control Centers). The North American
Electric Reliability Corporation (NERC), the Commission-certified
Electric Reliability Organization (ERO), submitted Reliability
Standard CIP-012-1 for Commission approval in response to a
Commission directive in Order No. 822. In Order No. 822, the
Commission directed NERC, pursuant to section 215(d)(5) of the FPA,
to develop modifications to the Reliability Standards to require
responsible entities to implement controls to protect, at a
minimum, communications links and sensitive bulk electric system
data communicated between bulk electric system Control Centers “in
a manner that is appropriately tailored to address the risks posed
to the bulk electric system by the assets being protected (i.e.,
high, medium, or low impact).”
Consistent with the directive
in Order No. 822, Reliability Standard CIP-012-1 improves upon the
currently-effective Critical Infrastructure Protection (CIP)
Reliability Standards to mitigate cyber security risks associated
with communications between bulk electric system Control Centers.
Specifically, Reliability Standard CIP-012-1 supports situational
awareness and reliable bulk electric system operations by requiring
responsible entities to protect the confidentiality and integrity
of Real-time Assessment and Real-time monitoring data transmitted
between bulk electric system Control Centers. Accordingly, the
Commission approves Reliability Standard CIP-012-1 because it is
largely responsive to the Commission’s directive in Order No. 822
and improves the cyber security posture of responsible
entities.
On behalf of this Federal agency, I certify that
the collection of information encompassed by this request complies
with 5 CFR 1320.9 and the related provisions of 5 CFR
1320.8(b)(3).
The following is a summary of the topics, regarding
the proposed collection of information, that the certification
covers:
(i) Why the information is being collected;
(ii) Use of information;
(iii) Burden estimate;
(iv) Nature of response (voluntary, required for a
benefit, or mandatory);
(v) Nature and extent of confidentiality; and
(vi) Need to display currently valid OMB control
number;
If you are unable to certify compliance with any of
these provisions, identify the item by leaving the box unchecked
and explain the reason in the Supporting Statement.