Rural Cooperative Cybersecurity Capabilities (RC3) Program

Yes

RC3 is Now NRECA's Broad Initiative for Cybersecurity

NRECA's Rural Cooperative Cybersecurity Capabilities (RC3) Program has evolved from the initial 3-year collaborative partnership between NRECA and the U.S. Department of Energy to become a broader NRECA program with a variety of measures aimed to help our members advance their cybersecurity posture. Through this program, we are working to provide resources and actionable advice to our members. Together, we can work to protect our industry from cyber threats.

Find an overview of the variety of cybersecurity resources and opportunities for our members in this summary:

Advisory: NRECA Cybersecurity Resources Summary (March 2023)

Where to Begin

Yes

Key Parts to a Cybersecurity Plan

Putting together an effective cybersecurity plan is key to mitigating, responding to, and recovering from cyber attacks, including malware, ransomware, and data exfiltration. There are multiple steps that are essential to this process. NRECA's RC3 program has tools and resources to assist cooperatives with each of these steps, as well as information on other leading cybersecurity entities from whom cooperatives could benefit.

Assessment

Begin with a comprehensive baseline risk assessment.

NRECA Resources

RC3 Cybersecurity Self-Assessment Toolkit

Hardcopy (2018)
Online (2019)

Guide to Developing a Cyber Security and Risk Mitigation Plan (2014)

[divider style="solid" /]

Incident Response

Develop an incident response plan.

NRECA Resources

RC3 Guide to Developing a Cyber Security and Risk Information Plan

Additional Resources

Computer Security Incident Handling Guide (NIST SP 800-161 r2)

[divider style="solid" /]

Exercise Your Skills

Test your incident response plan with periodic exercises.

NRECA Resources

Tabletop Exercise (TTX) Toolkit

[divider style="solid" /]

Share Information Regularly

Keep up to date on the latest trends by participating in an information sharing program.

NRECA Resources

Additional Resources

US-CERT (CISA)
E-ISAC

[divider style="solid" /]

Share Information When a Victim

Share information when you are the victim of a cyber attack to help others strengthen their defenses.

Resources

FBI Fusion Center (different for each state)
InfraGuard (FBI)
US-CERT (CISA)
E-ISAC (DOE)

[divider style="solid" /]

Train and Repeat

Cybersecurity training never ends.

NRECA Resources

RC3 Guidebooks Specific to Electric Cooperative Job Functions

Additional Resources

CyberStrike Workshops

Past Events (Resources for Reference)

Please enter a value

Yes

More Resources

Actionable Steps to Improve your Cybersecurity Posture Now (CISA)

Implement Cybersecurity Measures Now to Protect Against Potential Critical Threats

Hiring Vulnerability Assessment Providers and Cybersecurity Vendors

How to Manage Your Managed Service Provider (MSP) for Cybersecurity and Other Critical Services

Advisory (June 2022)

Yes

Our Team

This listing provides contact information and areas of focus for members of our cybersecurity team.

Please enter a value

Useful Resource

Download PDF

1 Column

Please enter a value

Yes

Contacts for Questions

Our Team: RC3@nreca.coop

Ryan “Chief” Newlon
Principal, Cybersecurity Solutions
ryan.newlon@nreca.coop

Justin Luebbert
Principal, Cybersecurity Compliance Solutions
Justin.Luebbert@nreca.coop

Projects and Programs

Work Groups

RESAP Program

Safety Initiatives

Programs

Resources

Services

Toolkits

By Format

Assessment

Incident Response

Exercise Your Skills

Share Information Regularly

Share Information When a Victim

Train and Repeat

Please enter a value

Please enter a value

Please enter a value

Useful Resource