Frequently Asked Questions
What does ES-ISAC stand for?
Electricity Sector Information Sharing and Analysis Center. The ES-ISAC was established under Presidential Decision Directive 63.
What is an ISAC?
An ISAC is an Information Sharing and Analysis Center. Each critical infrastructure has established an ISAC to communicate with its members, its government partners, and other ISACs about threat indications, vulnerabilities, and protective strategies. ISACs work together to better understand cross-industry dependencies and to account for them in emergency response planning.
What is PDD-63?
Presidential Decision Directive 63 (PDD-63) was issued by President Bill Clinton in 1998. It defines eight infrastructure industries critical to our national economy and public well-being. (Electricity is one of the eight). It also proposes the creation of ISACs.
Who belongs to the ES-ISAC?
All entities in the electricity sector are participants in the ES-ISAC.
Who runs the ES-ISAC?
The ES-ISAC is operated by the North American Electric Reliability Corporation on behalf of the electricity sector.
I am a registered entity of the electricity sector; how do I gain access to the member site?
At this time the member site is under construction and is currently under an invite-only demonstration environment. The ES-ISAC will announce when and how registered entities may gain access to the members only portal.
I am a registered entity of the electricity sector; what benefits does the member site provide me?
The member site is designed for cyber security operations and leadership personnel as a central location for interacting with the ES-ISAC. This includes sharing of industry PRIVATE level information, our HYDRA coordination site, various task forces, events calendars and other industry specific resources.
What is “HYDRA”?
Hydra is a network of electric industry subject matter experts (SME) created to handle modern fast-moving threats to the bulk power system. The program identifies and manages security knowledge resources as part of the ES-ISAC business processes and workflows. Hydra participants are asked to assist the ES-ISAC to generate the highest quality threat warning and vulnerability management intelligence. Hydra embraces a set of tools and methods that allow SMEs to collaborate effectively in an expert social network.
I am a vendor or manufacturer and work with the electricity sector; how do I gain access to the member site?
Currently the ES-ISAC member site is restricted to registered entities. The ES-ISAC is reviewing its policy regarding integrating potential external parties and their expertise and capabilities with the ES-ISAC.
Does the ES-ISAC hold routine status calls?
Yes, the ES-ISAC holds monthly briefing calls. These calls are restricted to registered entities or otherwise invited parties. If you would like more information please direct inquiries to joinesisac@nerc.net.
Does the ES-ISAC offer a newsletter?
The ES-ISAC currently does not offer any reoccurring newsletter. However, you may subscribe to our announcements section via RSS.
How do I report a perceived security incident or suspicious activity?
The ES-ISAC is currently revamping its portal which will allow for streamlined reporting. In the meantime please follow the reporting directions page.
How do I disclose a security vulnerability?
The ES-ISAC is currently revamping its portal which will allow for streamlined reporting. In the meantime please follow the reporting directions page.
How can I find out more information?
Any questions not answered here can be emailed to joinesisac@nerc.net.