In Progress or Future Projects/Activities

Supplier Evaluation

  • Revision Process for the Supplier Cyber Risk Assessment Questionnaire and the NATF Criteria (Governance for Change Management)
    • Lead Organizations: NATF and IO Revision Team
    • Estimated Completion: August 2020
  • Communication to Suppliers
    • Lead Organization: NATF and IO Team
    • Estimated Completion: August 2020
  • The NATF Criteria Application Guide (Update)
    • Lead Organization: NATF
    • Estimated Completion: August 2020
  • Support and Guidance – Webinars and Workshops (see Resources page for completed webinars)
    • Lead Organization: NATF/TBD
    • Estimated Completion: Ongoing

Risk Assessment

  • Ways to Mitigate identified Supplier Supply Chain Cyber Security Risks
    • Lead Organization: NATF
    • Estimated Completion: TBD
  • NATF Cyber Security Supply Chain Risk Management Guidance Whitepaper (Update)
    • Lead Organization: NATF with support from the SCWG
    • Estimated Completion: August 2020
  • NATF CIP-013 Implementation Guidance v2 (Reliance on 3rd-party assessments) (Update)
    • Lead Organization: NATF with support from the SCWG
    • Estimated Completion: August 2020
  • Assistance webinars for smaller entities
    • Lead Organization: APPA/LPPC/NRECA
    • Estimated Completion: TBD
  • Monitor/post governmental activities
    • Lead Organization: Exelon
    • Estimated Completion: TBD

NERC Compliance

  • Implementation Guidance
    • Lead Organization: NATF (with other qualified organizations) working with NERC CCC
    • Estimated Completion: TBD
  • Support and Guidance - Compliance Webinars and Workshops
    • An opportunity for industry to have open dialogue about their programs with ERO Enterprise
    • Lead Organization: NERC CCC
    • Estimated Completion: TBD
  • Compliance Templates/Take Away Materials
    • Lead Organization: NAGF with NERC CCC
    • Estimated Completion: TBD