Which order focuses on mitigating risk associated with malicious code on third-party Transient Cyber Assets?

FERC Order 843 specifically addresses the mitigation of risks associated with malicious code on third-party transient cyber assets. This order recognizes the increasing threats posed by cyber incidents that can be introduced through transient cyber assets, which are often temporary and may not be subject to the same level of control as permanent systems.

By focusing on transient cyber assets, FERC Order 843 emphasizes the importance of implementing robust security measures that can effectively limit the risk posed by these assets, ensuring that they do not compromise the overall security of the critical infrastructure. The order incentivizes organizations to adopt additional cybersecurity measures when handling these transient assets, which can include laptops, USB drives, or other portable devices that connect to the critical infrastructure systems.

The context of this order reflects a broader awareness of evolving cyber threats and aligns with the objectives of the NERC Critical Infrastructure Protection standards to enhance the resilience of the electric grid against a range of cybersecurity risks.