“Pursuant to Order No. 822 of the Federal Energy Regulatory Commission (“FERC” or “Commission),1 the North American Electric Reliability Corporation hereby submits a report providing the results of a study on the remote access protections required by NERC’s Critical Infrastructure Protection (“CIP”) Reliability Standards (“Remote Access Study Report”). Remote access refers to the ability to access a system, application, or data from a remote location. Remote access technology allows logging into a system as an authorized user without being physically present at its keyboard. NERC completed the Remote Access Study consistent with the FERC directive in Order No. 822 to perform a study to assess: (1) the effectiveness of the controls in the CIP Reliability Standards to mitigate known remote access vulnerabilities; (2) the risks posed by remote access-related threats and vulnerabilities; and (3) appropriate mitigating controls for any identified risks.”