In FERC's inquiry released this spring, the agency sought opinions about the security of our transmission system, and ideas about actions it could take to boost security in the form of incentives.
Security
27. Enhancing the physical and cyber-security of existing jurisdictional transmission facilities, including new facilities, can improve the facilities’ ability to contribute to the reliability of the bulk power system. Addressing the security of the transmission system is a priority of the Commission.
Q 32) Should the Commission incentivize physical and cyber- security enhancements at transmission facilities? If so, what types of security investments should qualify for transmission incentives? What type of incentive(s) would be appropriate?
Q 33) How should the Commission define “security” in the context of determining eligibility for incentive treatment? For example, should the Commission define security based on specific investments or based on performance of delivering increased security of the transmission system?
So, what the heck is this?
Sens. Lisa Murkowski (R-Alaska), Joe Manchin (D-WV), James Risch (R-ID), Maria Cantwell (D-WA) and Angus King (I-ME) introduced last week a bill designed to help strengthen the nation’s electric grid.
The Protecting Resources On The Electric grid with Cybersecurity Technology (PROTECT) Act directs the Federal Energy Regulatory Commission (FERC) to incentivize cybersecurity investments by electric utilities.
The measure also establishes a grant and technical assistance program for advanced cybersecurity technology at the Department of Energy (DOE).
Key provisions of the bill include directing FERC to issue a rulemaking on rate incentives for advanced cybersecurity technology and establish a grant program at DOE for utilities that are not regulated by FERC to deploy advanced cybersecurity technology.
Anyhow... what would this proposed legislation do?
Not later than 180 days after the date of enactment of this section, the Commission, in consultation with the Secretary of Energy, the North American Electric Reliability Corporation, the Electricity Subsector Coordinating Council, and the National Association of Regulatory Utility Commissioners, shall conduct a study to identify incentive-based, including performance-based, rate treatments for the transmission of electric energy subject to the jurisdiction of the Commission that could be used to encourage—
‘‘(1) investment by public utilities in advanced cybersecurity technology; and
‘‘(2) participation by public utilities in cyberse- curity threat information sharing programs.
INCENTIVE-BASED RATE TREATMENT.—Not later than 1 year after the completion of the study under subsection (b), the Commission shall establish, by rule, incentive-based, including performance-based, rate treat- ments for the transmission of electric energy in interstate commerce by public utilities for the purpose of benefitting consumers by encouraging—
‘‘(1) investments by public utilities in advanced cybersecurity technology; and
‘‘(2) participation by public utilities in cyberse- curity threat information sharing programs.
Furthermore, guess who pays the extra incentives? You do, I do, everyone does, in their electric bill. Congress is giving away our money because they believe it "benefits" us. They've even built in a protection for us...
RATEPAYER PROTECTION.—Any rate approved under the rule issued pursuant to this section, including any revisions to that rule, shall be subject to the requirements of sections 205 and 206 that all rates, charges, terms, and conditions—
‘‘(1) shall be just and reasonable; and
‘‘(2) shall not be unduly discriminatory or pref- erential.
But, we're not done yet!
ESTABLISHMENT.—Not later than 180 days after the date of enactment of this Act, the Secretary, in consultation with the Federal Energy Regulatory Commission, the North American Electric Reliability Corporation, and the Electricity Subsector Coordinating Council, shall establish a program, to be known as the ‘‘Rural and Municipal Utility Advanced Cybersecurity Grant and Technical Assistance Program’’, to provide grants and technical assistance to, and enter into cooperative agreements with, eligible entities to protect against, detect, respond to, and recover from cybersecurity threats.
Why are all taxpayers paying to secure the systems of small town municipal utilities? Is cyber security that much of an issue that we have to act now and spend a bunch of taxpayer money? If so, just order these utilities to secure their own systems and collect the costs from their ratepayers. No financial incentives to "encourage" them. No taxpayer dollars to get the job done (or be wasted, like a lot of federal grants).
This is utterly ridiculous. Let your Congress critter know you don't support this and want your utility service to be made safe now through regular ratemaking.