In Progress or Future Projects/Activities
Supplier Evaluation
- Revision Process for the Supplier Cyber Risk Assessment Questionnaire and the NATF Criteria (Governance for Change Management)
- Lead Organizations: NATF and IO Revision Team
- Estimated Completion: August 2020
- Communication to Suppliers
- Lead Organization: NATF and IO Team
- Estimated Completion: August 2020
- The NATF Criteria Application Guide (Update)
- Lead Organization: NATF
- Estimated Completion: August 2020
- Support and Guidance – Webinars and Workshops (see Resources page for completed webinars)
- Lead Organization: NATF/TBD
- Estimated Completion: Ongoing
Risk Assessment
- Ways to Mitigate identified Supplier Supply Chain Cyber Security Risks
- Lead Organization: NATF
- Estimated Completion: TBD
- NATF Cyber Security Supply Chain Risk Management Guidance Whitepaper (Update)
- Lead Organization: NATF with support from the SCWG
- Estimated Completion: August 2020
- NATF CIP-013 Implementation Guidance v2 (Reliance on 3rd-party assessments) (Update)
- Lead Organization: NATF with support from the SCWG
- Estimated Completion: August 2020
- Assistance webinars for smaller entities
- Lead Organization: APPA/LPPC/NRECA
- Estimated Completion: TBD
- Monitor/post governmental activities
- Lead Organization: Exelon
- Estimated Completion: TBD
NERC Compliance
- Implementation Guidance
- Lead Organization: NATF (with other qualified organizations) working with NERC CCC
- Estimated Completion: TBD
- Support and Guidance - Compliance Webinars and Workshops
- An opportunity for industry to have open dialogue about their programs with ERO Enterprise
- Lead Organization: NERC CCC
- Estimated Completion: TBD
- Compliance Templates/Take Away Materials
- Lead Organization: NAGF with NERC CCC
- Estimated Completion: TBD