The cybersecurity defense capabilities of high-impact and critical-impact entities

The NCCS regulation provides detailed regulations on responding to cyberattacks in the electricity sector.

The key elements of cyberattack management according to the NCCS regulation:
Entities must establish CSOC capability (even in an Managed service provider way), designate a Single point of contact, develop cyberattack management procedures that must be tested at least annually, and ensure that critical impact entity participate in cybersecurity exercises at least every three years.