Rules & Regulations of the State of Tennessee
Title 1220 - Tennessee Public Utility Commission
Subtitle 1220-04 - Division of Public Utilities
Chapter 1220-04-15 - Utility Cybersecurity Plans and Reporting
Section 1220-04-15-.04 - ANNUAL FILING REQUIREMENTS
Universal Citation: TN Comp Rules and Regs 1220-04-15-.04
Current through September 24, 2024
(1) By July 1st of each calendar year, all utilities shall submit documentation that the utility has prepared and implemented a cybersecurity plan. At a minimum, the documentation shall include:
(a) Contact
information for utility employee(s) responsible for cybersecurity;
(b) A statement indicating whether the
utility conducts annual cybersecurity training for the utility personnel with
access to any utility Information Technology System or Operational Technology
System; and
(c) A statement
indicating whether the utility has procured cybersecurity insurance.
(2) The documentation filed must include a sworn statement by the utility's chief executive officer, president, or another person with an equivalent role and authority, over the development and implementation of the cybersecurity plan. Such statement shall, at a minimum, confirm that:
(a) The utility has
prepared and implemented the cybersecurity plan described in the
filing;
(b) The cybersecurity plan
has been prepared or updated within the last two (2) years; and
(c) All documentation and information filed
is current and accurate.
Authority: T.C.A. §§ 65-2-102 and 65-4-127.
Disclaimer: These regulations may not be the most recent version. Tennessee may have more current or accurate information. We make no warranties or guarantees about the accuracy, completeness, or adequacy of the information contained on this site or the information linked to on the state site. Please check official sources.
This site is protected by reCAPTCHA and the Google
Privacy Policy and
Terms of Service apply.
