Changes: Electricity Subsector Cybersecurity Risk Management Process

Latest revision as of 05:10, 31 October 2013

Citation[]

U.S. Department of Energy, Electricity Subsector Cybersecurity Risk Management Process (RMP) (DOE/OE-0003) (May 2012) (full-text).

Overview[]

This guideline was developed by a team of government and industry representatives to provide a consistent and repeatable approach to managing cybersecurity risk across the electricity subsector. It is intended to be used by the electricity subsector, to include organizations responsible for the generation, transmission, distribution, and marketing of electric power, as well as supporting organizations such as vendors.

The RMP is written with the goal of enabling organizations — regardless of size or organizational or governance structure — to apply effective and efficient risk management processes and tailor them to meet their organizational requirements. This guideline may be used to implement a new cybersecurity program within an organization or to build upon an organization's existing internal cybersecurity policies, standard guidelines, and procedures.

@@ Line 1: / Line 1: @@
 == Citation ==
-[[U.S. Department of Energy]], '''Electricity Subsector Cybersecurity Risk Management Process''' (Draft) (Mar. 2012) ([http://energy.gov/sites/prod/files/RMP%20Guideline%20Second%20Draft%20for%20Public%20Comment%20-%20March%202012.pdf full-text]).
+[[U.S. Department of Energy]], '''Electricity Subsector Cybersecurity Risk Management Process (RMP)''' (DOE/OE-0003) (May 2012) ([http://energy.gov/sites/prod/files/Cybersecurity%20Risk%20Management%20Process%20Guideline%20-%20Final%20-%20May%202012.pdf full-text]).
 == Overview ==
+[[File:Electricity_Subsector.png|thumb]]
-The Electricity Subsector [[Cybersecurity]] [[Risk Management Process]] ([[RMP]]) guideline has been developed by a team of government and industry representatives to provide a consistent and repeatable approach to managing [[cybersecurity risk]] across the electricity subsector. It is intended to be used by the electricity subsector, to include organizations responsible for the generation, transmission, distribution, and marketing of electric power, as well as supporting organizations such as vendors.
+This guideline was developed by a team of government and industry representatives to provide a consistent and repeatable approach to managing [[cybersecurity risk]] across the electricity subsector. It is intended to be used by the electricity subsector, to include organizations responsible for the generation, transmission, distribution, and marketing of electric power, as well as supporting organizations such as vendors.
-The [[RMP]] is written with the goal of enabling organizations &mdash; regardless of size or organizational or governance structure &mdash; to apply effective and efficient [[risk management process]]es and tailor them to meet their organizational requirements. This guideline may be used to [[implement]] a new [[cybersecurity]] program within an organization or to build upon an organization’s existing internal [[cybersecurity]] [[policies]], [[standard]] guidelines, and procedures.
+The RMP is written with the goal of enabling organizations &mdash; regardless of size or organizational or governance structure &mdash; to apply effective and efficient [[risk management]] [[process]]es and tailor them to meet their organizational requirements. This guideline may be used to [[implement]] a new [[cybersecurity]] program within an organization or to build upon an organization's existing internal [[cybersecurity]] [[policies]], [[standard]] guidelines, and procedures.
+[[Category:Publication]]
+[[Category:Electric]]
+[[Category:Cybersecurity]]
+[[Category:2012]]