The 2025 updates to NERC Critical Infrastructure Protection (CIP) standards represent the most sweeping changes in over a decade—introducing mandatory Internal Network Security Monitoring (INSM), expanding requirements to “low-impact” assets, and tightening controls around vendor access, patch integrity, and supply chain risk.
This whitepaper, developed by Xage Security in collaboration with ITEGRITI and LTIMindtree, provides essential guidance to help utility leaders confidently navigate these changes.
