Statutes, codes, and regulations
Maryland Administrative code
Title 20 - PUBLIC SERVICE COMMISSIONSubtitle 06 - CYBERSECURITY
Chapter 20.06.01 - General
Section 20.06.01.04 - Cybersecurity Periodic Reporting

Md. Code Regs. 20.06.01.04

Download
PDF
Current through Register Vol. 51, No. 22, November 1, 2024
Section 20.06.01.04 - Cybersecurity Periodic Reporting
A. All utilities that have 30,000 or more customers in Maryland shall provide periodic confidential cybersecurity reports describing the company's adherence to good cybersecurity practice, including the company's cybersecurity maturity level trends, cybersecurity performance metric trends, or any other cybersecurity-related topics of current interest to the Commission and such additional representatives as the Commission designates.
B. Periodic confidential cybersecurity reports shall be held at a minimum of every 3 years, or as otherwise directed by the Commission.
C. The reporting utility shall provide an authorized company officer certification of the periodic confidential cybersecurity report.

Md. Code Regs. 20.06.01.04

Regulation .04 adopted effective 49:15 Md. R. 739, eff. 7/25/2022