FRD*
FERCFinal Rule

Critical Infrastructure Protection Reliability Standard: Cyber Security—Internal Network Security Monitoring

EnergyTechnology

Summary

This regulation requires electric power companies to monitor their computer networks for suspicious activity and security threats in real time. It's designed to protect the electrical grid from cyberattacks that could disrupt power to homes and businesses.

Key Points

  • 1Electric utilities must install and use monitoring systems to detect unauthorized access or attacks on their internal computer networks
  • 2Companies must continuously watch for suspicious activity rather than just checking occasionally, helping catch problems before they cause blackouts
  • 3The rule applies to all utilities that operate critical parts of the U.S. electrical grid serving millions of customers
  • 4Utilities must respond quickly when they detect potential security threats to prevent cyberattacks from spreading or causing damage
  • 5This protects everyday Americans by making the power grid more resilient against hackers and other cyber threats

Key Dates

Published

July 2, 2025

Read on Federal RegisterView Docket

This summary is for informational purposes only. It may not capture all nuances of the regulation. Always refer to the official text for authoritative information.

The Digest Network

Executive Orders

Share

XLinkedInFacebookBlueskyEmail

Related Regulations

OSMEnergy

Regulatory Program: West Virginia

FSEnergy

Locatable Minerals

NOAAEnergy

Taking or Importing of Marine Mammals: Hilcorp Alaska, LLC Oil and Gas Activities in Cook Inlet, AK