CIP Themes and Lessons Learned: Insufficient Commitment to Low Impact Programs

Implementing the security protections required by NERC Reliability Standard CIP-003 Requirement 2 is essential and the ERO Enterprise is concerned with the number of entities failing to meet these security objectives. Learn more about the risk that an insufficient commitment to low impact programs poses to the electric grid and other critical infrastructure protection (CIP) themes identified by the ERO Enterprise in the 2024 CIP Themes and Lessons Learned Report here: https://www.rfirst.org/wp-content/uploads/2024/08/2024-CIP-Themes-and-Lessons-Learned.pdf