ABOUT NPCC Careers Contact Us Governance & Corporate Membership Resources Leadership Team PROGRAM AREAS Standards & Criteria Compliance RAPA SAIS COMMITTEES DER/VER Forum Gov/Reg Affairs Reliability Coordinating Regional Standards NEWS Search SIGN IN

Posted: 05/25/2023

NERC Issues Section 1600 Data Request for Internal Network Security Monitoring

NERC issued a Section 1600 Data Request for Internal Network Security Monitoring (INSM) on May 25, 2023. This data request is in response to a Federal Energy Regulatory Commission directive in Order No. 887 to conduct a study on the risks of the lack of, and challenges to implementing, internal network security monitoring for medium impact Bulk Electric System (BES) Cyber Systems without External Routable Connectivity and for all low impact BES Cyber Systems. Registered entities have 60 days to provide finalized responses.

Responses are due by July 25, 2023.

Entities Required to respond are:

  • Balancing Authorities
  • Distribution Providers
  • Generator Owners
  • Generator Operators
  • Reliability Coordinators
  • Transmission Owners
  • Transmission Operators
  • Distribution Providers with certain facilities listed in the applicability section of the CIP standards.

Primary Compliance Contacts (PCC) for reporting entities must respond by logging onto the NERC ERO portal and selecting “INSM Data Request” at the top of the page.

For more information, please review the NERC INSM Data Request.

If your entity has any questions, please direct them to: : [email protected].




Compliance Bulletin Decisions & Notices ERO Enterprise Media Release NERC NPCC Regional Entities & Others Reliability Assessment Security Bulletin


  Upcoming Events

  News Highlights

Summer Reliability Assessment Forecasts Adequate Electricity Supplies

June 05, 2024

IBR Registration Initiative Reference Guide

May 16, 2024

Security Notice

This is a Northeast Power Coordinating Council, Inc. (NPCC) information system. You have no reasonable expectation of privacy regarding communications or data transiting or stored on NPCC’s information system. At any time and for any lawful purpose, NPCC may monitor, intercept, record, and search any communications or data transiting or stored on this information system. At NPCC’s sole discretion, NPCC may disclose pertinent information to the U.S. Government and its authorized representatives to protect the security of critical infrastructure and key resources, ensure information security, or to comply with any applicable law, regulation, legal process, or enforceable governmental request. By continuing, you acknowledge that you understand and consent to the terms and conditions described in this notice. The actual or attempted unauthorized access, use, or modification of this system is strictly prohibited and may subject violators to criminal, civil, and/or administrative action.