Guide to the Distributed Energy Resource Risk Management Framework   [open pdf - 1MB]

From the Executive Summary: "The emergence of distributed energy resources (DERs) has transformed the electric power sector and will likely have even more profound impacts on the future evolution of the United States energy sector as it modernizes and becomes more reliant upon complex informatics programming and systems to ensure that our power grid remains safe from malicious interference. In an effort to improve the nation's cybersecurity posture, Executive Order 13800: Strengthening the Cybersecurity of Federal Networks and Critical Infrastructure (2017) recognizes the increasing interconnectedness of federal information systems while acknowledging that critical infrastructure is at risk due to the misalignment of many policies that govern information technology at a national level. Office of Management and Budget Circular A-130, 'Managing Information as a Strategic Resource' (2016) addresses responsibilities for protecting federal information resources, requiring agencies to implement the Risk Management Framework (RMF), developed by the National Institute of Standards and Technology. Executive Order 14028: Improving the Nation's Cybersecurity (2021) clarifies the responsibility of the federal government to collaborate with the private sector to maintain a safe virtual environment that is agile and may be modified in tandem with the discovery of new cybersecurity threats and proactive mitigation of unknown future cybersecurity incidents."

Report Number:
NREL/TP-5R00-81715; National Renewable Energy Laboratory Technical Report 5R00-81715
Public Domain
Retrieved From:
National Renewable Energy Laboratory: https://www.nrel.gov/index.html
Media Type:
Help with citations