Audit
People
Avista
IPSEC
Review
100

What is FERC?

Federal Energy Regulatory Commission

100

Who is the director of Security?

Clay Storey

100
What are the three words that embody Avista's values?

Trustworthy, Innovative, Collaborative

100

This IPsec protocol provides encryption and confidentiality for data as it travels across a network.

What is ESP (Encapsulating Security Payload)?

100

a server at the very top of the DNS hierarchy. It acts as the starting point for translating domain names into IP addresses.

What is a Root Nameserver?

200
What type of device might be on the RED and Yellow networks? 

HMI

200

Who is the CISO at Avista

Alexis Alexander

200

What is Avista's Mission ?

We enable vibrant communities through energy. Safely, Responsibly, Affordably. 

200

This IPsec mode encrypts only the original IP packet payload, leaving the original IP header intact.

What is Transport Mode?

200

This protocol provides encryption, integrity, and authentication for IPsec traffic.

What is ESP (Encapsulating Security Payload)?

300

This is the first Dam downstream of Lake CDA

Post Falls

300

Who is the Senior VP of Operations and Technology

Wayne Manuel

300

What states does Avista serve?

Washington, Idaho, Oregon, Montana

300

This key exchange protocol is commonly used with IPsec VPNs to negotiate security associations and cryptographic keys.

What is IKE (Internet Key Exchange)?

300

This three letter acronym is the smart itron metering environment

AMI

400

This Hydro Project was not in scope for FERC due to tribal interconnectivity

Little Falls

400

Who is the President & Chief Executive Officer ?

Heather Rosentrater

400

Name the 8 Hydro-Electric Facilities

Noxon

Cabinet Gorge

Post Falls

Upper Falls 

Monroe Street

9 Mile

Long Lake 

Little Falls

400

In IKEv2, these Security Associations carry protected user traffic and can be rekeyed independently of the IKE SA that manages them.

What are Child SAs?

400

This system is our primary security data aggregator in OT environments and serves as our SIEM

Splunk

500

What is a "sunny day" in terms of the FERC Audit? 

a normal day 

500

Who is the Director Digital Innovation, Data & Chief Enterprise Architect

Hossein Nikdel

500

Name 4 non-hydro generating plants

Rathdrum

KettleFalls

Northeast

Bolder Park

500

A tunnel appears up, Phase 1/IKE SA is established, and no packets are encrypted. Packet captures show traffic bypassing the VPN entirely. An engineer should first verify these rules that determine whether traffic is considered "interesting" enough to trigger or use IPsec.

What are the security policies or crypto ACLs?

500

What does a Station Service PLC do?

controls and audits the power generated by the units and fed back to the local control house

M
e
n
u