The North American Electric Reliability Corporation (NERC) announced the largest public NERC CIP fine ever given, with a $10 million fine levied in response to 127 separate violations across an organization. As is normal, NERC did not identify the organization involved, although the language in the Notice of Penalty (NOP) makes it clear that the single organization represents multiple individual companies across various NERC regions. The violations encompass each of the CIP standards, but almost all of the violations were self-reported by the entity, with only 13 of them being discovered during Compliance Audits. The self-reports were submitted beginning in 2015 and continuing through 2018. Some of the penalties were related to not identifying assets which should have been subject to the CIP standards. For example, there were violations for not identifying and categorizing assets correctly, and then also violations for not including those assets in Disaster Recovery Plans or baseline configurations.