Pennsylvania Code & Bulletin
COMMONWEALTH OF PENNSYLVANIA

• No statutes or acts will be found at this website.

The Pennsylvania Code website reflects the Pennsylvania Code changes effective through 54 Pa.B. 6234 (September 28, 2024).

52 Pa. Code § 101.2. Definitions.

§ 101.2. Definitions.

 The following words and terms, when used in this chapter, have the following meanings, unless the context clearly indicates otherwise:

   Abnormal operating condition—A condition possibly showing a malfunction of a component or deviation from normal operations that may:

     (i)   Indicate a condition exceeding design limits.

     (ii)   Result in a hazard to person, property or the environment.

   Business continuity plan—A written plan that will ensure the continuity or uninterrupted provision of operations and services through arrangements and procedures that enable a utility to respond to an event that could occur by abnormal operating conditions.

   Business recovery—The process of planning for and implementing expanded operations to address less time-sensitive business operations immediately following an abnormal operating condition.

   Business resumption—The process of planning for and implementing the restarting of defined business operations following an abnormal operating condition, usually beginning with the most critical or time-sensitive functions and continuing along a planned sequence to address all identified areas required by the business.

   Contingency planning—The process of developing advance arrangements and procedures that enable a jurisdictional utility to respond to an event that could occur by abnormal operating conditions.

   Critical functions—Business activities or information that cannot be interrupted or unavailable for several business days without significantly jeopardizing operations of the organization.

   Cyber security—The measures designed to protect computers, software and communications networks that sup-port, operate or otherwise interact with the company’s operations.

   Cyber security plan—A written plan that delineates a jurisdictional utility’s information technology disaster plan.

   Emergency response plan—A written plan describing the actions a jurisdictional utility will take if an abnormal operating condition exists.

   Infrastructure—The systems and assets so vital to the utility that the incapacity or destruction of the systems and assets would have a debilitating impact on security, economic security, public health or safety, or any combination of those matters.

   Jurisdictional utility—A utility subject to the reporting requirements of §  27.10, §  29.43, §  31.10, §  33.103, §  57.47, §  59.48, §  61.28, §  63.36 or §  65.19.

   Mission critical—A term used to describe essential equipment or facilities to the organization’s ability to perform necessary business functions.

   Physical security—The physical (material) measures designed to safeguard personnel, property and information.

   Physical security plan—A written plan that delineates the response to security concerns at mission critical equipment or facilities.

   Responsible entity—The person or organization within a jurisdictional utility designated as the security or emergency response liaison to the Commission.

   Self Certification Form—The Public Utility Security Planning and Readiness Self Certification Form.

   Test—A trial or drill of physical security, cyber security, emergency response and business continuity plans. Testing may be achieved through a sum of continuous partial testing rather than one distinct annual drill when an entire plan is tested from beginning to end.



No part of the information on this site may be reproduced for profit or sold for profit.


This material has been drawn directly from the official Pennsylvania Code full text database. Due to the limitations of HTML or differences in display capabilities of different browsers, this version may differ slightly from the official printed version.