Industrial & Manufacturing Energy, Utilities & Sustainability Grid Modernization & Distributed Energy

Grid Management Software

Long-cycle programs where regulation, capital, and grid reliability define the pace.

OSIsoft (AVEVA) GE Vernova Oracle Utilities Itron
Inside this journey
  1. Pre-Discovery

    Align the room on outcomes, decision process, and constraints before deeper discovery.

    1. Stakeholder Alignment

      Confirm decision roles, timelines, regulatory constraints, and what ‘good’ looks like for each stakeholder.

      Alignment Questions

      Starting Together: Who’s Actually in the Room?

      • Which people or roles from your organization will actively participate in decision-making for this program? Options: Grid Operations Director / Ops Lead, IT Director / CIO, VP Engineering, Chief Financial Officer / Budget Owner, Cybersecurity / CISO, Legal / Regulatory Affairs, Field Operations / Crew Lead, Metering & AMI Lead, Third-party integrator / consultant, Other
      • For each person or role you listed, what is their single biggest objective or concern for this initiative? (Please name role and their primary objective)
      • Who holds final capital approval and who signs off on long‑term vendor commitments? Options: Executive team (CEO/CFO), VP Engineering / Technology, Board / Commissioner approval required, Procurement with delegated authority, Not yet defined / TBD, Other
      • Who will act as the day‑to‑day program owner and primary point of contact for vendor coordination? Options: Operations Program Manager, IT Project Manager, PMO Lead, Vendor Account Manager, Shared ownership, Not assigned yet
      • Are there external stakeholders who must be involved (state PUC, ISOs/RTOs, DER aggregators, county emergency management)? Please list and explain their required level of involvement.

      If Something Breaks, Who Will Be Held Responsible?

      • When outages, compliance misses, or schedule overruns happen, which stakeholder historically bears the blame or political fallout? Options: Operations / Dispatch, IT / Infrastructure, Executive leadership, Project sponsor, Procurement, Shared accountability, Other
      • Tell the story of one recent incident where stakeholder misalignment caused delay, risk, or reputational harm—what happened, and who lost credibility?
      • How long has this misalignment or friction been affecting projects like this in your organization? Options: Less than 6 months, 6–12 months, 1–3 years, More than 3 years, Not sure
      • How do current KPIs, incentives, or budget rules push teams toward short-term cost savings rather than long-term reliability or resilience? Options: Strongly favor cost saving, Balanced, Favor reliability/upgrades, No clear incentives, Other
      • When pushback emerges, what typically convinces reluctant stakeholders to change their position? (data, pilot results, regulatory pressure, executive mandate, vendor guarantees, other) Options: Concrete pilot results, Regulatory deadline, Executive sponsorship, Financial model / ROI, Third-party validation, Contractual SLAs, Other

      Timelines That Will Make or Break This

      • If a regulatory deadline or a major reliability event forced action tomorrow, could your organization meet the needed milestones? Options: Yes, with current resources, Yes, with additional funding, No, would need months of prep, No, not feasible
      • What is your target go‑live window for an initial deployment, and why is that timing important? Options: Within 3 months, 3–6 months, 6–12 months, 12–18 months, 18+ months
      • Which external or internal deadlines drive that timing (regulatory orders, grant milestones, rate cases, retirements of legacy systems)? Please list and attach dates if possible.
      • What is your typical internal approval cycle for capital and contracts (time from initial business case to signed contract)? Options: Less than 3 months, 3–6 months, 6–12 months, 12–24 months, More than 24 months
      • What’s the maximum schedule slip you can tolerate before the program becomes politically or operationally untenable? Options: <1 month, 1–3 months, 3–6 months, 6–12 months, Would still proceed but re-scope

      Regulatory Red Lines and Hidden Constraints

      • Which regulatory, compliance, or audit requirements would stop this project immediately if not explicitly satisfied? Options: NERC CIP, NERC Reliability Standards, FERC requirements, State PUC approval, Interconnection agreements, NIST Cybersecurity Framework, State data residency / privacy, Other
      • Are there scheduled audits, rate case filings, or compliance milestones during your planned timeline that we must coordinate around? Options: Yes—list dates in the next field, No, Not sure
      • What documentation, certification, or evidence will regulators or internal auditors insist on (e.g., change logs, cyber attestations, test results)?
      • Do you have constraints about data residency, cloud vs on‑prem deployment, or vendor background checks for contractors? Options: On‑prem only, Hybrid acceptable with controls, Cloud acceptable (regional restrictions), Requires vendor security clearance, Other
      • Has your organization previously failed an audit or faced enforcement around IT/OT projects? If yes, what were the pain points we must avoid?

      What Would Make Each Person Say, ‘That’s a Win’?

      • For operations, IT, cybersecurity, finance, and executives—name one measurable outcome each would point to as proof we delivered value (e.g., SAIDI reduction, faster restoration, audit pass, TCO reduction). Options: SAIDI/SAIFI improvement, Faster average restoration time, Reduction in manual switching events, Accurate DER dispatch within X seconds, Successful cybersecurity audit, Total cost of ownership reduction, Improved crew productivity, Other
      • Which single KPI would convince executive leadership that the investment was justified? Options: Quantified reliability improvement (SAIDI/SAIFI), Cost avoidance / ROI, Regulatory compliance milestone achieved, Improved DER hosting capacity, Customer satisfaction / complaints down, Other
      • What operational changes would frontline operators need to see to feel the system is genuinely easier and safer to use?
      • What evidence would your cybersecurity team require before signing operational go‑live (e.g., penetration test, architecture review, NIST mapping)? Options: Penetration test report, Third‑party security assessment, Architecture & hardening checklist, NIST/CIP mapping, Vendor SOC2 or equivalent, Other
      • Is there a stakeholder group whose success feels secondary today but could become critical later? Who are they and why?

      Hidden Dependencies & Deal‑Breakers — Tell Me the Truth

      • What’s one integration, contract clause, or legacy constraint you suspect could derail the program if we don’t address it up front?
      • Which legacy systems or vendors are non‑negotiable to integrate with (SCADA vendor, OMS provider, AMI vendor, DER aggregator)? Please name systems and versions where possible.
      • Do you have existing SLAs, warranties, or vendor lock‑ins that limit how we can modify operational architectures? Options: Yes—details required, Some constraints, No significant constraints, Not sure
      • How available are your OT/field crews and SMEs for cutover, testing, and rehearsals—do you expect capacity constraints? Options: Fully available, Limited availability (nights/weekends), Significant constraints, Unknown yet
      • What single technical or organizational risk would cause you to pause negotiations until it’s resolved?

      Decisions, Governance, and How We’ll Work Together

      • If our teams disagree on a go/no‑go, which decision model would you trust the most to avoid paralysis? Options: Executive steering committee finalizes, Joint working group consensus, Customer holds veto, Vendor recommends, customer approves, Escalate to sponsor if unresolved
      • How frequently should governance checkpoints occur (steering committee, technical reviews, executive updates)? Options: Weekly, Bi‑weekly, Monthly, Quarterly, Ad hoc as needed
      • Who must have explicit veto rights for scope, security, or change control decisions?
      • What change control and risk‑acceptance process do you expect us to follow (e.g., documented exceptions, joint risk register, sign‑off thresholds)?
      • Which communication channels and cadences will make stakeholders feel informed without overwhelming them (email summaries, dashboard, weekly syncs)? Options: Weekly executive brief, Technical dashboard with role views, Email decision log, Monthly town hall, Dedicated Slack/MS Teams channel, Other

      The Smallest Step That Builds Trust — What’s It Gonna Be?

      • What is the smallest, fastest milestone that would materially reduce stakeholder anxiety and prove progress (e.g., integration demo, scoped pilot, security architecture review)? Options: Scoped technical pilot (3–6 months), Security & architecture workshop, Integration demo with live data, Detailed project plan & RACI, Proof of concept on a simulator, Other
      • Would you be open to a time‑boxed pilot or PoC that focuses on one measurable outcome first? If yes, which outcome? Options: Faster outage restoration, DER dispatch accuracy, SCADA integration reliability, Cybersecurity baseline validation, Load forecasting improvement, Not open to pilot
      • Who must sign the mutual commitment to start that pilot, and what approvals (budget, security, legal) are required?
      • Assuming the pilot meets its acceptance criteria, what is the expected decision window for moving to full deployment? Options: Immediately (0–30 days), 30–90 days, 3–6 months, 6+ months, Undecided
      • What would make you say yes to the pilot within the next 30 days—what do we need to show or guarantee?
    2. Current State Mapping

      Document existing SCADA/EMS/OMS architectures, DER penetration impacts, failure modes, and integration gaps.

      Current State

      Start with a Straight Snapshot

      • In one sentence, how would you describe the current state of your operational control systems and the single thing that worries you most?
      • Which of the following systems are currently authoritative for real-time grid operations in your environment? Options: Central SCADA (legacy), Modern EMS, Distribution Management System (DMS), Outage Management System (OMS), DERMS, ADMS (unified EMS+DMS), Local RTU/PLC-only control, Other
      • Where are those core systems hosted today? Options: Primarily on-premise, Private data center, Public cloud, Hybrid (on-prem + cloud), Edge-first/field-hosted, Vendor-hosted SaaS
      • Who is the primary day-to-day owner of these systems (select one)? Options: Grid Operations / Control Center, Engineering, IT / Infrastructure, Cybersecurity, Third-party vendor/integrator, Shared governance model
      • Approximately how many substations, field devices (RTUs/IEDs), and DER endpoints currently feed telemetry into your operational stack? Please specify counts or ranges.

      If We Keep Doing Nothing, What Breaks First?

      • If DER penetration doubled in the next 12–24 months, how confident are you that your existing architecture would maintain safe, reliable control? Options: Very confident, Somewhat confident, Uncertain, Not confident at all
      • Which DER types are material today and expected to grow fastest at your utility? Options: Rooftop solar (residential), Community solar, BESS (behind-the-meter), Utility-scale storage, EV chargers (managed), Microgrids/islands, Other
      • How much real-time visibility and control do you currently have over DER resources (pick best match)? Options: Full telemetry + two-way control, Partial telemetry, limited control, Telemetry only (no control), Very limited/field only, No visibility
      • What protocols and data channels do your DERs and field devices primarily use today? Options: DNP3, IEC 61850, IEC 60870, Modbus, IEEE 2030.5 / SEP2.0, OpenADR, MQTT/REST/APIs, Proprietary vendor protocols, Other
      • Where do you see the biggest latency or data-quality gaps when DER events occur (e.g., meter-to-ops latency, missing fields, stale data)? Give specific examples if possible.
      • And how long has your team been living with those visibility/control gaps? Options: Less than 6 months, 6–12 months, 1–3 years, More than 3 years

      Where the System Fractures When Stress Hits

      • When the grid is under stress (storms, sudden DER swings, circuit faults), which part of your stack usually trips up operators first? Options: SCADA data gaps / stale points, Alarm flood / situational overload, Incorrect state estimation in EMS/DMS, DER miscoordination/islanding, Communication network congestion, Cybersecurity alerts blocking actions, Other
      • Tell us about a recent incident where system behavior deviated from expectation—what happened and what was the immediate operational impact?
      • How long does it typically take your team to detect and isolate such incidents from first sign to operator awareness? Options: Seconds, Minutes, Tens of minutes, Hours, More than a day
      • Which failure modes have you seen repeat (select all that apply)? Options: Telemetry loss / dropouts, Incorrect state reporting, Conflicting control commands, DER queuing or ramp limits exceeded, Cascading protection trips, Operator overrides causing instability, Network/time sync issues, Other
      • When a failure happens, what is most frustrating emotionally for operators or engineers—fear of outages, blaming systems, lack of tools, or something else?

      Who Really Decides—and What Keeps Them Up at Night

      • If executive leadership had to sign off on a multi-million dollar control-system change tomorrow, what single unresolved issue would make them pause?
      • Which stakeholders must be satisfied before a change moves forward (pick all that apply)? Options: Grid Operations / Dispatch, Engineering / Planning, IT / Network, Cybersecurity / Compliance, Finance / CFO, Regulatory Affairs, Legal / Procurement, Community / Political leaders
      • What regulatory or compliance milestones are critical to your roadmap (e.g., NERC CIP, state modernization orders, rate case timelines)? Options: NERC CIP audits, State regulatory modernization directives, Rate-case / capital approval window, Interconnection rule changes, DER aggregation regulations, No pressing regulatory milestones
      • How risk-averse is your leadership when it comes to vendor-managed cloud services vs on-prem systems? Options: Prefer on-premise (highly risk-averse), Prefer hybrid (cautious), Comfortable with cloud, No strong preference
      • Which measurable outcomes would comfort your decision-makers (examples: max control loop latency, percent of DERs under direct command, time-to-isolate), and which one matters most?

      Where the Technical Gaps Hide (and Why They’re Hard to Notice)

      • What critical integration did you assume would just 'work' but has repeatedly required manual fixes?
      • Which middleware or data-normalization layers do you have in place (select all that apply)? Options: Enterprise Service Bus (ESB), Message broker (Kafka/RabbitMQ), Protocol gateways/DNP3/IEC translators, MDMS / Metering historian, No middleware / point-to-point integrations, Other
      • How complete is your asset inventory and data model for control purposes (e.g., accurate naming, connectivity, device capabilities)? Options: Up-to-date and trusted, Mostly complete with gaps, Fragmented across sources, Poor / unreliable
      • Where do data model mismatches create the biggest operational risk (e.g., breaker statuses, topology, DER capabilities)? Provide an example.
      • What internal processes exist to onboard a new integration or DER fleet—who signs off and how long does it usually take?

      What Success Looks Like in a Crisis

      • Imagine a high-DER volatility event—what exact outcome would make you say the platform prevented an outage and justified the investment?
      • Which of these operational metrics do you expect to move as a result of improved visibility/control (select all that apply)? Options: Reduced SAIDI/SAIFI, Fewer operator interventions, Faster fault isolation time, Improved DER dispatch accuracy, Lower manual reclose errors, Reduced cybersecurity incident impact
      • What hard acceptance criteria would you require for a pilot to be considered successful (examples: control latency < X sec, DER compliance rate > Y%)?
      • How quickly do you need to see those results in a pilot before recommending broader rollout? Options: Days to weeks, 1–3 months, 3–6 months, Longer than 6 months
      • Who must sign the pilot success certificate (names or roles), and what approvals afterward are non-negotiable?

      Practical Constraints and the Costs That Hide Under the Hood

      • Which hidden cost surprises you most when modernizing operational systems? Options: Data cleanup and model alignment, Custom integrations, Training and change management, Extended parallel operations, Security hardening and audits, Legacy decommissioning
      • What are your typical maintenance and staffing constraints for supporting new operational capabilities? Options: Dedicated internal team, Shared ops/IT resources, Rely on vendor-managed services, Outsourced to integrator, Understaffed / hiring freeze
      • How much scheduled downtime per year can you realistically allocate for integration cutovers and tests? Options: None (must be live-safe), Small windows (night/weekend), Planned multi-hour windows, Planned multi-day windows, Flexible / full maintenance windows
      • What internal budget or procurement constraints typically slow a project (e.g., capital approval cycles, procurement rules, vendor pre-qualifications)?
      • Which cybersecurity or compliance controls will add unexpected scope to an integration (select all that apply)? Options: Air-gapped segments, Strict patch windows, Encrypted point-to-point comms, Security hardening of field devices, Independent audits & attestation, NERC CIP baselining

      Small First Steps That Prove Big Value

      • What is the smallest, lowest-risk pilot you would accept that, if successful, changes the budget conversation? Options: Single feeder / substation, A single DER aggregator fleet, Telemetry-only proof (no control), Control-limited pilot (read + advisory), Security/compliance validation only
      • What data access and permissions do we need to run that pilot (SCADA read, limited control, historical data export), and who grants them?
      • How long would you permit a pilot to run before making a decision on scale (select one)? Options: 2–4 weeks, 1–3 months, 3–6 months, Longer than 6 months
      • What operational or cybersecurity gates must be cleared before a pilot can even begin (examples: vulnerability scan, control authority paperwork, table-top exercise)?
      • Who will be the day-to-day point of contact for a pilot and who has final sign-off to proceed to a broader rollout?
  2. Outcome Discovery

    Define target reliability, operational KPIs, cybersecurity requirements, and regulatory success signals.

    Discovery Questions

    Quick Check — Tell Us Where You Stand

    • Who are you representing in this conversation (select one primary role)? Options: Grid Operations / Director, VP Engineering, IT / Infra Lead, Cybersecurity Lead, Rate/Regulatory Lead, Other
    • In one short paragraph, describe your utility/system (service territory size, customer count, transmission vs distribution focus).
    • Which of these best describes your current DER penetration at peak (approx % of peak load)? Options: <5%, 5–15%, 15–30%, 30–50%, >50%, Unknown / Variable
    • What are the top three outcomes you hope a new grid platform will deliver? Options: Reduce outage duration (SAIDI), Reduce outage frequency (SAIFI), Improve DER orchestration, Faster situational awareness, Stronger cybersecurity posture, Regulatory performance reporting / cost recovery, Lower O&M costs, Other
    • Who else must be involved to make a decision (names or roles) and how do they prefer to be engaged? Options: Operations workshops, IT/security deep-dive, Executive business case review, Regulatory briefing, Procurement/risk review, Other

    If We Don’t Change, What Breaks First?

    • When DERs increase, what single failure mode worries you most—and why would that failure be hard to fix with your current stack?
    • Tell us about a recent operational incident that felt like a preview of the future grid—what happened, who noticed it first, and what was the root cause?
    • How often are you seeing DER-driven events that require manual intervention (e.g., reverse power, voltage excursions, islanding)? Options: Daily, Weekly, Monthly, A few times a year, Rarely, Never / Not tracked
    • Which reliability KPIs do you currently miss or are trending in the wrong direction (pick all that apply)? Options: SAIDI, SAIFI, MAIFI, Average restore time, Momentary interruptions, Customer minutes lost, Other
    • If you could change one operational habit today to avoid those failures, what would it be and what’s stopping you?

    Hidden Constraints That Kill Projects

    • What internal or external constraint do you think will surprise vendors and most derail a procurement or deployment effort?
    • Which of these constraints apply to your program (select all that slow decisions or block pilots)? Options: NERC CIP / critical infrastructure constraints, Procurement / vendor selection rules, Legacy SCADA vendor lock-in, Limited OT staff capacity, IT network segmentation rules, Capital budget timing, Other
    • Describe the hardest integration point you’ve faced (SCADA historian, field device protocols, meter data, vendor API) and the timeline it actually took to resolve.
    • How long does a typical vendor security assessment or legal review take before a PO can be issued? Options: Less than 1 month, 1–3 months, 3–6 months, 6–12 months, Longer than 12 months, Unknown
    • What single policy or legacy requirement would cause you to rule out a candidate solution outright?

    What Would 'Reliable' Actually Feel Like?

    • Imagine your control room six months after deployment—what observable change would make you say, 'This is working'?
    • Which specific operational KPIs should we measure to prove reliability improvement (choose up to five)? Options: SAIDI, SAIFI, MAIFI, Average restoration time, Number of manual switching actions, Seconds-to-detect for faults, DER curtailment events
    • What latency and determinism requirements do your control actions need to meet (telemetry, alarms, DER commands)? Options: Telemetry <1s / Control <100ms, Telemetry 1–5s / Control 100–500ms, Telemetry 5–30s / Control 500ms–5s, Non-real-time acceptable (>30s), Unsure—need to define
    • Which stress scenarios should a pilot demonstrate to convince operations (select all that apply)? Options: High PV reverse flow, Island formation and re-synchronization, Large-scale feeder fault and automated FLISR, Simultaneous DER disconnect during storm, Rapid EV charging demand spike, Cyber intrusion detection and isolation
    • How will operators and field crews know to trust automated actions—what visibility, rollback, or approval controls are required?

    When Cybersecurity Isn’t Optional — Tell Us Your Bar

    • If you had to draw a hard line today, what security requirement would instantly eliminate a solution (e.g., no remote vendor access, must meet NERC CIP baseline)?
    • Which cybersecurity frameworks, standards, or audits must the platform align with for acceptance? Options: NERC CIP, NIST CSF / SP 800-53, ISO 27001, State-level security regs, Vendor security questionnaire, Other
    • What minimum technical controls are non-negotiable (pick all that apply)? Options: Role-based access control / MFA, End-to-end encryption (in transit & at rest), Network segmentation / DMZ, Strict change control & logging, Regular pentesting & vulnerability scans, SIEM integration
    • Who owns SOC / 24x7 monitoring in your organization—internal team, MSSP, or vendor—and how would you like that responsibility split? Options: Internal SOC, MSSP, Vendor-managed SOC, Hybrid (internal + vendor)
    • How quickly must you be able to revoke vendor access or isolate a component if a compromise is suspected? Options: Immediately (minutes), Within hours, Within 24 hours, Within days, Undecided / need discussion

    How Will Regulators Say You Won

    • What regulatory outcomes or evidence would justify your investment in this platform to commissioners or governing boards?
    • Which of these regulatory signals are most important for your filings or incentives (select up to three)? Options: Performance-based rate incentives, Demonstrated avoided outage minutes, Documented cybersecurity compliance, Customer service improvements, Cost-effectiveness / Benefit-cost ratio, Other
    • What types of deliverables do regulators expect from pilots (modeling reports, field test logs, third-party validation, customer impact analysis)? Options: Modeling reports, Field test logs, Third-party validation, Customer impact analysis, Cost-benefit study, Other
    • What timelines are you working against for regulatory filings or capital approvals? Options: Immediate (next 1–3 months), Quarterly (3–6 months), Annual budget cycle (6–12 months), Multi-year / planning horizon, Uncertain
    • Who are the regulatory stakeholders we should brief and what concerns do they typically raise?

    Small Bets to Build Confidence — What Would You Pilot?

    • If you could run a focused pilot with minimal disruption, which scope would most accelerate your decision (pick one or combine)? Options: DER orchestration pilot (subset of inverters), FLISR on one feeder, VVO / volt-var optimization by feeder area, OMS + crew dispatch integration, Hybrid: telemetry + DER control test
    • What measurable acceptance criteria would make a pilot a clear success (name up to five concrete metrics)?
    • Do you have the data and connectivity needed for a pilot (historian access, meter data, field device comms)? Options: All data and comms available, Most available with minor work, Significant gaps exist, Unknown—need discovery
    • What training and operator change management would be required to accept automation from a pilot? Options: Operator console training, Runbook updates, Field crew procedures, War-room rehearsals, Joint ops-SOC drills, Other
    • Realistically, what budget range could you allocate to a 3–6 month pilot (ballpark)? Options: <$100k, $100–250k, $250–500k, $500k–$1M, >$1M, Undecided
    • What would be the fastest acceptable timeline from kick-off to pilot decision? Options: 4–8 weeks, 2–3 months, 3–6 months, 6+ months
  3. Solution Experience

    Use customer scenarios to validate how the platform handles bidirectional flows, DER orchestration, and stress conditions.

    Experience Meetings

    • Solution Experience Pre-Read Alignment
    • Scenario Walkthrough — Bidirectional Flows (Customer Feeder)
    • DER Orchestration & Control Sequencing Workshop
    • Stress Conditions — High DER Penetration & Failure Modes
    • Validation Review & Acceptance Criteria Sign-off
    • Measure platform performance vs agreed acceptance thresholds under stress.
    • Prove the platform detects and represents bidirectional flows using customer data.
    • Validate that control responses meet the customer's operational acceptance criteria.
    • Collect explicit customer confirmations and list any functional or data gaps.
    • Document any behavioral deviations and classify as bug, gap, or configuration.
    • Owner to update scenario script and re-run schedule for any failed validation.
    • Host to deliver a short report mapping demonstration steps to the customer's future-state outcomes.
    • Restate Orchestration Objectives
    • Validate orchestration logic meets deterministic expectations under both normal and contingency conditions.
    • Ensure conflict resolution and priority rules behave as the customer requires.
    • Agree on acceptance criteria and any required product/configuration changes.
    • Update orchestration rule config per customer feedback and schedule patch or config change.
    • Customer to provide any additional DER metadata or aggregation mappings needed.
    • Host to produce an updated runbook excerpt showing operator steps for orchestration events.
    • Test Plan & Roles
    • Introductions & Objective
    • Identify and prioritize any performance, stability, or functional failures.
    • Agree remediation plan and retest schedule for any critical findings.
    • Host to deliver test logs, dashboards, and a pass/fail matrix for each stress scenario.
    • Assign engineering owners for each high-severity defect and set retest dates.
    • Customer to confirm any regulatory reporting needs triggered by test results.
    • Executive Summary of Test Outcomes
    • Obtain customer sign-off on which acceptance criteria are met and which require remediation.
    • Agree a prioritized remediation plan with owners and retest schedule for any failures.
    • Confirm readiness items to transition to Solution Scope and Mutual Commit stages.
    • Finalize acceptance criteria document with measured results and signatures.
    • Publish remediation plan with owners, severity, and target completion dates.
    • Prepare executive summary and recommendation for the Mutual Commit stage.
    • Elicit and lock a one-sentence Current State that all stakeholders agree on.
    • Quantify the consequences of the current state in operational and business terms.
    • Define a one-sentence Future State outcome that will be the target of validation.
    • Agree on concrete scenarios, success metrics, required datasets, and test environment readiness.
    • Customer to deliver one-sentence Current State and consequence numbers (costs/risks) in writing.
    • Customer to upload test datasets and provide test credentials/access to the sandbox environment.
    • Host to prepare scenario scripts, success metric dashboard, and test runbook.
    • Assign owners and finalize schedule for hands-on scenario sessions.
    • Recap Objectives & Success Metrics
    • Current State (one sentence)
    • Stress Test A: Rapid PV Ramp & Reverse Flow
    • Review Orchestration Ruleset from Customer
    • Scenario Setup Review
    • Acceptance Criteria Walkthrough
    • Consequence Quantification
    • Live Walkthrough: Detection & Visualization
    • Risk, Security & Regulatory Implications
    • Demo: Normal-condition Orchestration
    • Stress Test B: Telemetry Storm / High Telemetry Rate
    • Stress Test C: Comms Loss & Fallback
    • Operational Readiness & Training Needs
    • Demo: Contingency Orchestration & Conflict Resolution
    • Live Walkthrough: Control Response
    • Future State Outcome (one sentence)
    • Mapping to Operator Workflow
    • Tie Behavior Back to Consequences
    • Scenario Selection & Mapping
    • Metrics Review & Root-Cause Triage
    • Decision & Next Steps
    • Data, Integration & Environment Readiness
    • Acceptance Criteria & Runbook Updates
    • Validation Checkpoint
  4. Solution Scope

    Define modules (EMS, DMS, DERMS, OMS), integrations, deployment model, and measurable acceptance criteria.

    Scope Configuration

    • SCADA data ingestion connector deployment
    • Field device protocol adapter deployment (IEC 61850/DNP3/Modbus)
    • Real-time state estimator and model activation
    • Automated FLISR sequence deployment
    • Volt-VAR optimization control deployment
    • DERMS aggregation and dispatch engine deployment
    • Load and distributed generation forecast model deployment
    • AMI/smart meter data integration and metering interface
    • Outage management and crew-dispatch automation integration
    • Cloud and hybrid platform provisioning
    • Time-series data migration and replication setup
    • Operator simulator training sessions for real-time ops
    • Role-based access control and audit logging implementation
    • NERC CIP–aligned patch management and endpoint hardening

    Scope Questions

    SCADA data ingestion connector deployment

    • Which SCADA vendors/historians are currently in your environment? Options: OSI PI, GE Historian, Schneider EcoStruxure, Legacy/Custom, Other
    • How many SCADA points/tags will be ingested initially (approx)? Options: <10k, 10k-50k, 50k-200k, >200k
    • What is the required end-to-end latency for SCADA updates to the platform? Options: 1-5s, <1s, 5-30s, >30s
    • Do you require hot-standby or high-availability ingestion connectors? Options: Yes, No, Undecided
    • Are there specific network segmentation or DMZ restrictions for SCADA connectivity? Options: Yes, No
    • Describe any custom tag naming conventions, transformation rules, or derived signals required.

    Field device protocol adapter deployment (IEC 61850/DNP3/Modbus)

    • Which field protocols are present on your feeders/substations? Options: IEC 61850, DNP3, Modbus, Proprietary, Other
    • How many field devices (RTUs/IEDs/relays) will require adapters? Options: <100, 100-500, 500-2,000, >2,000
    • Do devices use secure transport (e.g., TLS, secure DNP3) or plaintext? Options: Secure transport, Plaintext, Mixed/Unknown
    • Will adapters be deployed on-premise near the devices or centrally in the control center/cloud? Options: Edge/on-site, Centralized/control center, Cloud/virtual gateway, Hybrid
    • Are there any custom protocol dialects, mapping tables, or vendor-specific profiles required? Options: Yes, No
    • List any constrained network links, bandwidth limits, or latency constraints between field devices and adapters.

    Real-time state estimator and model activation

    • Do you currently run a real-time state estimator or powerflow model in operations? Options: Yes, No, Pilot
    • What network models are available for ingestion (CIM, PSS/E, Synergi, custom)? Options: CIM/XML, PSS/E, PowerFactory, Synergi, Custom, None
    • What is the geographic/single-bus area scope for initial model activation (e.g., one substation, feeder, service territory)? Options: Single substation/feeder, Multiple feeders, Regional/entire distribution, Transmission + Distribution
    • What update cadence and convergence SLA do you require for the state estimator? Options: Sub-second, 1-5s, 5-30s, Minute-level
    • Are real-time telemetry sources (PMUs, SCADA points, smart meters) synchronized and time-stamped consistently? Options: Yes, No, Partially
    • Describe any model validation, contingency analysis, or supervisory checks you require prior to activating models into control.

    Automated FLISR sequence deployment

    • Do you currently have functional FLISR sequences in your DMS/OMS or are you building them from scratch? Options: Existing sequences, New development, Hybrid
    • Which devices/actions should FLISR sequences control (reclosers, sectionalizers, breakers)? Options: Reclosers, Sectionalizers, Feeders/breakers, Smart switches, Other
    • What acceptable customer outage restoration time improvements are you targeting with FLISR? Options: <1 min, <5 min, <15 min, No specific target
    • Do you require coordination with protection settings and relay vendor configurations during FLISR deployment? Options: Yes, No, Consult required
    • Is automatic operation allowed in production or only simulated and operator-approved? Options: Fully automatic, Operator-in-the-loop, Simulation only
    • Provide any region-specific safety, regulatory, or operational constraints that must be enforced by FLISR sequences.

    Volt-VAR optimization control deployment

    • Which VVO control elements are available (OLTC, capacitor banks, voltage regulators, smart inverters)? Options: OLTC, Capacitor banks, Voltage regulators, Smart inverters, Other
    • What objective should VVO prioritize (loss reduction, voltage profile compliance, VAR balance, hosting capacity)? Options: Loss reduction, Voltage compliance, Hosting capacity, Hybrid/custom
    • Do you have feeder-level voltage limits and regulatory bounds that the VVO must enforce? Options: Yes, No, Partial/uncertain
    • What cadence is expected for VVO decisions (seconds, minutes, hourly)? Options: Seconds, 1-5 minutes, 5-30 minutes, Hourly
    • Are there customer-level constraints (e.g., selective voltage bands for critical customers) that VVO must respect? Options: Yes, No
    • Describe telemetry availability (voltage/current points, inverter telemetry) required for VVO on target feeders.

    DERMS aggregation and dispatch engine deployment

    • What classes of DER assets must be supported initially (rooftop PV, community storage, EV charging, BESS)? Options: Rooftop PV, Battery storage, EV charging, Community solar, Demand response, Other
    • Do DERs connect via DERMS-ready gateways, AMI, or third-party aggregators? Options: DERMS gateways, AMI, Third-party aggregators, Direct EDC APIs, Mixed
    • What dispatch/use-cases are required (voltage support, peak shaving, islanding, frequency response)? Options: Voltage support, Peak shaving, Island/blackstart, Frequency response, Other
    • Are there existing enrollment, telemetry, or telemetry latency SLAs for DER telemetry? Options: Yes, No/unknown
    • What market or tariff signals (time-of-use, demand charge) must the DERMS incorporate for dispatch decisions? Options: TOU, Demand charge, Wholesale market signals, No market signals, Other
    • Describe security/credentialing model for DER device control and any certification requirements.

    Load and distributed generation forecast model deployment

    • Do you currently use load/solar forecasting models in production? Options: Yes - in production, Yes - pilot, No
    • What forecasting horizons are required (real-time seconds/minutes, intra-hour, day-ahead)? Options: Seconds/minutes, Intra-hour, Hour-ahead, Day-ahead, Week-ahead
    • What input data sources are available (weather APIs, satellite irradiance, AMI, inverter telemetry)? Options: Weather API, Satellite irradiance, AMI, Inverter telemetry, None/other
    • What accuracy or error tolerance targets do you require (e.g., MAPE %) for forecasts? Options: <2% MAPE, <5% MAPE, <10% MAPE, No strict target
    • Do you require forecast model retraining cadence and on-site data pipelines for continuous learning? Options: Yes, No, Undecided
    • Are there internal data privacy or retention rules that govern meteorological or customer-derived inputs? Options: Yes, No

    AMI/smart meter data integration and metering interface

    • Which AMI vendor/communications stack is in use (Landis+Gyr, Sensus, Itron, Silver Spring, Custom)? Options: Landis+Gyr, Sensus, Itron, Silver Spring, Custom/Other
    • What data cadence is required from meters (near-real-time, 5-min, 15-min, hourly)? Options: Near-real-time, 5-min, 15-min, Hourly, Daily
    • Do you require meter-to-customer mapping, billing data reconciliation, or revenue-grade interfaces? Options: Meter mapping, Billing reconciliation, Revenue-grade, None
    • Are there existing APIs, message brokers, or file-exchange processes for AMI integration? Options: APIs, Message broker (MQ), Batch file exchange, None/Unknown
    • What scale of meters will be integrated initially (number of meters)? Options: <10k, 10k-100k, 100k-500k, >500k
    • List any regulatory meter data retention or privacy constraints we must follow.

    Outage management and crew-dispatch automation integration

    • Do you currently use an OMS/crew dispatch system and which vendor? Options: Yes - Vendor: specify, No
    • What level of automation is desired for trouble detection to crew assignment (automated ticketing, manual review)? Options: Fully automated, Automated with operator review, Manual
    • Do you require integration with mobile workforce apps and real-time crew status tracking? Options: Yes, No
    • What outage detection inputs will be used (AMI outage flags, SCADA alarms, customer calls)? Options: AMI outage flags, SCADA alarms, Customer calls, Third-party feeds
    • Are there preferred SLA rules for outage prioritization (critical customers, service criticality tiers)? Options: Yes, No
    • Describe any integration constraints with existing crew payroll, work planning, or asset management systems.

    Cloud and hybrid platform provisioning

    • Which deployment model do you prefer for production (on-prem, cloud, hybrid)? Options: On-premise, Cloud (public), Cloud (private), Hybrid
    • If cloud, which cloud provider(s) are allowed (AWS, Azure, GCP, other)? Options: AWS, Azure, GCP, Other/On-prem
    • What compliance or data residency requirements affect where data and services are hosted? Options: Local/State residency, Federal compliance, NERC CIP, None/Unknown
    • Do you require disaster recovery RPO/RTO targets and cross-region failover? Options: Yes - specify, No
    • Are there existing virtualization/container standards or IaC (Terraform/Ansible) preferences for provisioning? Options: Yes, No, Prefered tool: specify
    • Describe network connectivity constraints (MPLS, VPN, SD-WAN) between sites and cloud.
  5. Mutual Commit

    Finalize commercial, security, and governance terms, and confirm capital approval and implementation triggers.

    Agreement Modules

    • Statement of Work (SOW)
    • Master Services Agreement (MSA)
    • Pricing & Commercial Terms
    • Service Level Agreement (SLA)
    • Security & Privacy Addendum
    • Data Processing Agreement (DPA)
    • Compliance Evidence & Audit Rights
    • Acceptance Criteria & Final Sign-off
    • Implementation Schedule & Milestones
    • Capital Approval & Funding Trigger
    • Governance & Steering Committee Charter
    • Change Order Agreement
    • Termination & Exit Plan
    • Software Licensing & IP Agreement
    • Source Code Escrow Agreement
    • Training & Knowledge Transfer Plan
    • Third-Party Procurement & Hardware Supply Agreement
    • Insurance, Indemnity & Liability Schedule
    • Regulatory Approvals & Permits Confirmation
  6. Deployment

    Operationalize rollout with readiness checks, enablement, and outcome validation.

    1. Pre-Deployment Readiness

      Confirm data migration plans, test environments, access, cybersecurity controls, and operational owners are in place.

      Readiness Questions

      Getting Comfortable With Going Live

      • What is the single primary objective you want this deployment to achieve? Options: Improve reliability / reduce SAIDI, Enable DER orchestration at scale, Automate FLISR/Volt‑Var, Replace legacy SCADA functions, Meet regulatory/grid modernization requirements, Other
      • What is your target go‑live quarter or date range? Options: Within 30 days, Within 3 months, 3–6 months, 6–12 months, No firm date
      • Who is sponsoring the deployment at the executive level, and who will be the single decision authority for go/no‑go?
      • Thinking about past launches (if any), what emotion best describes how your team felt after cutover: relief, exhilaration, exhausted, anxious, or mixed? Options: Relief, Exhilaration, Exhausted, Anxious, Mixed
      • Is there anything—political, regulatory, or organizational—that would cause you to pause this deployment at the last minute? Options: Pending regulatory approval, Capital hold or budget review, Staffing/unions, Vendor security concerns, None of the above, Other

      What Could Trip Us Up on Day One?

      • If something critical fails in the first 72 hours, who inside and outside your organization will be blamed or held accountable?
      • Which parts of your current stack do you believe are highest‑risk during cutover (select up to three)? Options: SCADA RTUs/RTACs, Field devices / protective relays, Metering/AMI, Historic outage data migration, Third‑party integrations (GIS, OMS, ADMS), Network connectivity / WAN
      • How often do you experience unplanned operational incidents that we should model during acceptance testing? Options: Weekly, Monthly, Quarterly, Rarely, Don't know
      • When failures happen today, what manual steps does your operations team take that we must preserve or automate in cutover?
      • Who outside your core team (vendor support, field crews, third‑party integrators) must be available during the first week, and what SLA do you expect from them? Options: 24/7 on‑call, Business hours with on‑call escalation, Scheduled support windows only, No external support required, Other

      Is Your Data Ready to Be Trusted?

      • How confident are you that migrated data (topology, network models, meter mappings) will match what operators expect on day one? Options: Very confident, Somewhat confident, Unsure, Not confident
      • Which data sources are in scope for migration and reconciliation (check all that apply)? Options: SCADA historian, AMI / smart meters, GIS network model, Asset registry, Work order / OMS data, DER registry / vendor portals
      • Do you have a single data owner for each source who can approve mappings and sign off reconciliations? Options: Yes, for every source, Partial coverage, No single owners defined, Not sure
      • Describe the reconciliation process we will use to validate migrated records—what samples, acceptance thresholds, and who signs off?
      • Are there historical data quality issues (missing timestamps, incorrect phasing, meter drift) we must remediate before cutover? Options: Yes — significant issues, Yes — minor issues, No known issues, Unknown / need audit
      • Which transformation rules or business logic are likely to change during migration (example: topology aggregation, DER aggregation rules)?

      Who Will Actually Run This When It’s Live?

      • If the operator console alerts at 02:00, who is the named owner who will take first action?
      • Which teams must be trained and certified prior to cutover (select all that apply)? Options: Control room operators, Distribution engineers, Field crews, Network/IT support, Security operations / SOC, Metering/AMI team
      • How many hours of hands‑on simulation or scenario training will your operators accept before they feel ready? Options: <8 hours, 8–24 hours, 24–40 hours, >40 hours, Depends on role
      • Are there union, regulatory, or roster constraints that limit who can perform critical actions after cutover? Options: Yes — union rules, Yes — regulatory restrictions, No constraints, Unsure
      • What ongoing operational support model do you prefer post‑go‑live (vendor run, co‑managed, fully internal)? Options: Phased transition, Vendor run, Co‑managed, Fully internal
      • Tell us about a time your team solved an operational surprise—how did roles and decisions actually play out?

      Can We Prove It Works Before We Flip the Switch?

      • What would make your testing team say the system is “production‑ready” — and what have you seen vendors over‑promise on in tests before?
      • Which kinds of acceptance tests are required by your governance (select all that apply)? Options: Failover / DR, FLISR sequence validation, Volt‑Var behavior under high PV, DER control and ride‑through, End‑to‑end latency/perf, Security validation (pen test)
      • How closely must the test environment mirror production for you to trust the results? Options: Exact parity, High fidelity (critical systems only), Representative subset, Low fidelity / conceptual
      • What pass/fail thresholds do you require for critical tests (examples: failover <30s, FLISR isolation time <X, DER control response <Y)?
      • Are you willing to conduct staged live stress tests (off‑peak) with vendor oversight before full cutover? Options: Yes, with strict controls, Maybe — need approvals, No, not acceptable, Unsure
      • Who must sign acceptance certificates for each test category, and what is your desired timeline for sign‑offs?

      Locking Down Access and Cyber Confidence

      • What would your security team point at as the single biggest unresolved risk that could block deployment?
      • Which security frameworks or controls must we demonstrate alignment with before go‑live? Options: NERC CIP, NIST CSF, ISO 27001, Vendor SOC 2, Custom internal controls
      • What is your preferred model for operator and admin access (RBAC, role‑based with MFA, permanent service accounts, ephemeral certificates)? Options: RBAC + MFA, RBAC + ephemeral credentials, Centralized IAM integration (AAD/LDAP), Legacy service accounts, Other
      • Have you completed or scheduled an independent penetration test or purple team exercise for the deployment stack? Options: Completed, Scheduled before cutover, Planned after cutover, No plan
      • What incident response and forensics capabilities need to be in place on day one (logs, packet captures, playbooks)?
      • Are there cross‑department SLAs for security incident escalation we must embed into the cutover plan? Options: Yes — formal SLAs, Informal escalation paths, No SLAs, Don't know

      Field Integration: Will the Grid Cooperate?

      • If a local relay or RTU behaves differently than expected post‑cutover, do we have immediate fallback controls in place? Options: Yes — automated fallback, Yes — manual fallback runbook, No fallback defined, Unsure
      • Which field protocols and vendors are in scope for integration and testing (select all that apply)? Options: DNP3, IEC 61850, Modbus, Proprietary vendor APIs, IEEE C37.118 / synchrophasors
      • Do field devices have firmware or certificate requirements that need staged updates before connecting to the new platform? Options: Yes — firmware updates required, Yes — certificate provisioning required, No updates required, Unknown — need inventory
      • How will you validate telemetry integrity from field to platform (sample rates, timestamp alignment, loss tolerance)?
      • Which third‑party field teams must be physically present during cutover (vendor engineers, contractors, OEMs)? Options: Vendor OEM rep, Field service contractor, Internal crews only, No physical presence required, Other
      • Are there geographic/seasonal constraints (storm season, planned outages) that affect which feeders we can cut over when? Options: Yes — seasonal constraints, Yes — planned outages, No constraints, Unsure

      Cutover Playbook and Rollback: Who's Got the Gloves On?

      • If we need to stop and roll back mid‑cutover, what is the single go/no‑go trigger that will stop the switch? Options: Major customer impact, Unrecoverable data mismatch, Security incident, Operator safety concern, Other
      • How long is an acceptable rollback window (time from detection to complete revert) for you? Options: <1 hour, 1–4 hours, 4–12 hours, 24 hours, Longer / requires planning
      • List the top five sequential actions in your ideal cutover runbook (owners, approximate durations, checkpoints).
      • How many full dress rehearsals (complete runbook practice) do you want before the live cutover? Options: None, 1, 2–3, 4+
      • What communications cadence and channels must be used during cutover (war room, mass notifications, NOC/ops bridge)? Options: War room + secure chat, Email + phone tree, Dedicated NOC bridge + SMS, Other
      • Who has the authority to call an immediate rollback and how will that be documented in the runbook?

      Success Gates and Capital Triggers

      • What hard metric or gate will stop capital or trigger the next phase if not achieved (examples: <X% DER control success, <Y sec failover)?
      • Which approvals are required post‑acceptance to release remaining funds or move to the next contract milestone? Options: CFO/capital approval, Operations sign‑off, Security sign‑off, Regulatory confirmation, Other
      • How long of a stabilization window do you require post‑go‑live before declaring success? Options: 1 week, 1 month, 3 months, 6 months
      • What KPIs will you measure during stabilization (select up to five)? Options: SAIDI/SAIFI, FLISR operations per incident, DER dispatch success rate, Mean time to detect/restore, Operator incident rate, Cybersecurity incident count
      • Who will own the post‑go‑live issue backlog and enhancement requests, and how often should we meet to triage them? Options: Vendor product owner, Joint governance board, Utility program manager, Monthly, Weekly
      • If success criteria aren’t met during the stabilization period, what remedial actions or governance steps do you expect? Options: Extended support window, Root cause plan & timeline, Adjust scope / revert features, Escalate to exec sponsors
    2. Deployment Enablement

      Schedule tasks, assign owners, run cutover rehearsals, and coordinate SCADA/field device integrations and support.

    3. Validation Checklist

      Execute acceptance tests for failover, FLISR/volt-var behavior, DER control, and NERC/NIST-aligned security validation.

      Validation Questions

      Setting the Table: Quick read on why we're validating

      • Briefly, what triggered this validation phase for your program right now?
      • Which of the following validation outcomes matter most to you today? (pick all that apply) Options: Successful failover/recovery, FLISR / automated fault isolation, Volt‑VAR stability / VVO, DER control & islanding behavior, Cybersecurity controls & compliance evidence, Data integrity and migration verification, Operational readiness / operator confidence
      • Who will be the primary sponsor we check back with about validation decisions and tradeoffs? Options: Grid Operations Director, Chief Engineer / VP Engineering, IT Director, Chief Information Security Officer (CISO), Project Sponsor (Executive)
      • What is your target timeframe for completing the full validation checklist? Options: Next 2 weeks, Next month, 1–3 months, 3–6 months, No firm date yet
      • Are there regulatory or board deadlines driving this date? If yes, please name them and the deadline.

      Do we really trust our protection & failover logic?

      • If a primary SCADA master fails during peak, what is your tolerance for recovery time (RTO) and data loss (RPO)? Options: RTO < 30s / RPO < 5s, RTO < 5 min / RPO < 1 min, RTO < 30 min / RPO < 5 min, We have no defined RTO/RPO
      • Which failover modes must we demonstrate during acceptance testing? Options: Automatic master failover, Manual promote/rollback, Hot standby sync, Warm standby with catch‑up, Remote DR site failover
      • Describe any historical failover incidents (what happened, how long to recover, root cause).
      • Which monitoring and alerting signals would you consider a failed failover test? Options: Loss of telemetry > threshold, Operator console freeze, Inconsistent state across masters, Unresolved queued commands, Unauthorized control actions observed
      • What maintenance windows or operational constraints limit when we can run disruptive failover tests? Options: Night/weekend only, Specific seasonal windows, Must coordinate with field crews, No disruptive tests allowed

      When DERs push back: are our controls actually reliable under stress?

      • Imagine a rapid cloud cover event with high rooftop PV—what DER behaviors have you seen that surprised operators?
      • Which DER control modes must be validated end‑to‑end during acceptance? Options: Remote dispatch (setpoints), Local droop response, Volt‑VAR support, Frequency response, Island detection & intentional islanding
      • Do you require injected fault/stress scenarios (Hardware‑in‑the‑loop, field switching) or simulated scenarios only? Options: Field-injected stress required, Hardware-in-the-loop acceptable, Simulation-only acceptable, Combination preferred
      • How should DER vendor variability be handled if different device models respond differently during the same test? Options: Test each vendor model, Test representative models only, Require vendor firmware/config standardization, Document deviations and accept with mitigations
      • What operator behaviors during DER anomalies would you count as acceptable vs. concerning? (share examples)

      Security: is compliance a checkbox or a compass?

      • Which standards must the validation evidence map to for you to sign off? Options: NERC CIP (list standards), NIST CSF, ISO 27001, Internal corporate security policies, State regulator guidance
      • What level of evidence is required for each control test (artifact, test log, signed witness, third‑party attestation)? Options: Test logs + screenshots, Operator witness + signoff, Third‑party penetration test report, System generated audit trail only
      • Are there specific cybersecurity tests you will insist on during validation (e.g., role‑based access, MFA, patching verification, secure key management)? Options: RBAC verification, MFA enforcement, Patch level verification, Encryption at rest/in transit, Vulnerability scan / pen test
      • If we uncover a security control gap during validation, what remediation SLAs do you expect before full acceptance? Options: Immediate fix before acceptance, Mitigation plan within 2 weeks, Mitigation plan within 30 days, Documented risk acceptance by CISO
      • Who from your security team will be the point of contact and required approver for security evidence?

      If this test fails, who pays the cost and who decides the next move?

      • What is the financial or operational impact threshold that would force a roll‑back during validation? Options: Any customer outage, Any safety incident, Revenue impact above $X, Performance degradation > Y%
      • Do you have an agreed rollback plan and pre‑approved triggers for aborting a test? If yes, summarize them. Options: Yes – documented rollback plan exists, Draft rollback plan exists, No rollback plan yet
      • Which stakeholders must be notified immediately if a test triggers a rollback (select all that apply)? Options: Operations, Engineering, IT / Network, CISO, Executive sponsor, Regulator
      • How should impacted customers be handled in the event of an unintended service impact during validation? Options: Standard outage communications, Proactive customer notifications, Compensatory arrangements, Regulatory reporting
      • Describe any non‑negotiable safety or service constraints that would prevent certain test types.

      Who’s actually running the tests — and who will own the outcomes?

      • Which internal teams will be hands‑on during tests (pick all that apply)? Options: Grid Operations (Dispatch/Control Room), Protection & Relay Team, Distribution Engineering, IT / Network Ops, Cybersecurity, Field Crews / Lines, Meters & AMI
      • Will you require Vendor/System integrator personnel in the control room for witness and remediation? Options: Yes — full time, Yes — on call, Only for specific tests, No vendor presence required
      • Who has final sign‑off authority for each test category (operational, security, compliance, customer impact)? Please name roles.
      • Do you want operator training/role play built into validation so staff demonstrate procedures during tests? Options: Yes — mandatory, Optional — recommended, No — separate training session
      • How will we capture and timestamp operator decisions during tests (logs, recordings, witness forms)? Options: System audit logs, Signed witness forms, Video/audio recording, Operator playbook entries

      What success actually looks like — be specific

      • For failover, what exact metrics must we hit for you to mark the test 'pass' (e.g., RTO, telemetry convergence, command latency)?
      • For FLISR / VVO, what KPIs define acceptable behavior? (choose up to three) Options: Mean time to isolate fault, Change in customer minutes interrupted (CMI), Voltage deviation thresholds, Reduction in outage count, Stability under high DER penetration
      • For DER control, which acceptance criteria are critical (select all that apply)? Options: Setpoint adherence %, Response time to dispatch, No unintended islanding, Safe reconnection sequencing
      • What level of test repeatability do you expect before accepting (single successful run, 3 consecutive runs, statistical confidence)? Options: Single successful run, 3 consecutive successful runs, Run under multiple load shapes, Statistical validation with sample size
      • How should we present pass/fail evidence — executive summary, detailed runbooks, raw logs, or all of the above? Options: Executive summary only, Detailed runbooks + key logs, Raw logs + system traces, Full package (summary + full artifacts)

      Running the tests: logistics, windows, and dependencies

      • What test environments are available and designated for which tests (dev, staging, pilot, live with mitigations)? Options: Full staging environment, Pilot subnetwork live, Production with safeguards, No separate environment available
      • Which external dependencies must be scheduled or validated in advance (telemetry providers, DER vendors, third‑party comms links)? Options: Telemetry/telemetry vendor, DER vendors, SCADA comms provider, Metering/AMI provider, Field crew availability
      • What pre‑validation checklist items must be completed before any disruptive test (backups, patch levels, spare hardware, comms checks)? Options: Full system backup, Patch verification, Spare hardware staged, Communications verification, Field crew standby
      • What calendar constraints or seasonal restrictions affect when we can run tests (peak season, maintenance windows, regulatory blackout periods)? Options: No tests during peak demand, Only scheduled maintenance windows, Seasonal constraints apply, Flexible scheduling
      • How should we coordinate live test notifications to field crews, ops, and customers (channels and lead time)? Options: Email + SMS + Ops channel, Formal outage notifications, Pre‑test briefings only, Regulatory notifications required

      After the smoke clears: remediation, lessons, and guarding the future

      • If a test uncovers a defect, what remediation cadence do you expect (immediate patch, 2‑week fix, deferred backlog)? Options: Immediate hotfix, Fix within 2 weeks, Fix within 30 days, Document and schedule into roadmap
      • How do you want post‑test artifacts organized for audit and regulator review? Options: Centralized evidence repository, Shareable executive package, Per‑test folders with metadata, Direct access to system logs
      • What lessons‑learned process will you use to convert test findings into policy or config changes? Options: Formal RCA + action items, Informal debrief, Change board review, Operational playbook updates
      • Which recurring validation cadence would make you confident the system stays compliant and resilient over time? Options: Quarterly, Bi‑annual, Annual, Event‑driven
      • Are there KPIs or dashboards you want updated automatically after validation so executives see ongoing health? Options: Yes — executive dashboard, Yes — ops dashboard, No, periodic reports suffice, Unsure / need recommendation

      Decision moment: what evidence do you need to greenlight deployment?

      • What combination of test results, artifacts, and approvals will constitute your formal acceptance package? Options: Pass logs + operator signoff, Pass logs + security attestation, Pass logs + executive approval, All of the above
      • Does your organization require regulator or third‑party witness for final acceptance? If yes, name the party. Options: Yes — regulator, Yes — third‑party auditor, No external witness required, Undecided
      • What are your hard go/no‑go criteria (list the dealbreakers we must avoid)?
      • Finally, are you comfortable committing to a validation schedule now, and if so what single week works best for a dry run? Options: This week, Next week, In 2–4 weeks, In 1–3 months, Need to coordinate internally first
  7. Success

    Review measured outcomes against success signals and maintain a shared channel for issues and enhancement requests.

    Success Reviews

    • Quarterly Success Metrics Review
    • Operational Readiness & Handover Review
    • Enhancement Prioritization & Roadmap Workshop
    • Security & Compliance Post-Deployment Review
    • Shared Channel Governance & SLA Kickoff

    Issues & Enhancements

    • Agree incident response cadence and next tabletop exercise date.
    • Review Consolidated Enhancement Log
    • Produce a prioritized enhancement backlog with clear business rationale for each item.
    • Assign owners and tentative delivery windows tied to vendor release plans and customer budget cycles.
    • Identify items requiring additional scoping or commercial decisions.
    • Create prioritized backlog entries in the shared project tracker with business-impact notes.
    • Assign PMs for top 3 roadmap items and schedule scoping sessions.
    • Prepare cost/benefit briefs for any items needing capital approval.
    • Security Test Results Summary
    • Ensure all critical security findings have owners and remediation timelines.
    • Confirm the system meets required NERC/NIST evidence standards or capture remediation steps.
    • Welcome & Objectives
    • Assign remediation owners for critical/high findings with target completion dates and verification plan.
    • Publish compliance evidence package location and owner contacts for upcoming audits.
    • Schedule next incident tabletop exercise and invite cross-functional attendees.
    • Purpose & Scope of Shared Channel
    • Establish a clear governance model and SLAs for the shared channel to manage expectations.
    • Standardize submission templates to reduce triage time and improve data quality.
    • Agree on reporting cadence and dashboard access for transparency.
    • Provision the shared channel (Teams/Slack/Jira) with access lists and onboard participants.
    • Publish the severity matrix, templates, and triage workflow to the channel and intranet.
    • Set up automated weekly SLA and backlog reports and share with stakeholders.
    • Verify which success signals are met and which are not with documented evidence.
    • Quantify operational and regulatory consequences for any unmet signals.
    • Assign owners, deadlines, and acceptance criteria for remediation actions or confirm formal acceptance.
    • Owner-assigned remediation plan for each unmet signal with target close dates and KPIs to re-measure.
    • Publish metric snapshot and meeting minutes to the shared channel within 48 hours.
    • Schedule follow-up checkpoint meeting focused on top 3 gaps within 4 weeks.
    • Operational Ownership Roster
    • Confirm operational owners and ensure runbooks are complete and approved.
    • Tune monitoring and alerting to reduce noise and ensure actionable notifications.
    • Create a short training plan to address any operator competency gaps affecting outcomes.
    • Finalize and publish updated runbooks with versioning and owner sign-offs.
    • Adjust alert thresholds per agreed settings and document rationale.
    • Schedule operator refresher workshop and record attendance.
    • Severity Matrix & Routing Rules
    • Open Findings & Remediation Status
    • Recap Success Signals & Acceptance Criteria
    • Runbook & SOP Review
    • Business Impact Scoring
    • Measured Outcomes Dashboard Walkthrough
    • Submission Templates & Required Evidence
    • Technical Feasibility & Effort Estimates
    • Access, IAM & Segmentation Review
    • Monitoring & Alerting Validation
    • Gap Analysis: Where We Meet / Miss Targets
    • Training & Competency Gaps
    • Triage & Escalation Workflow
    • Compliance Calendar & Audit Readiness
    • Prioritization & Roadmap Mapping
    • Reporting Cadence & KPIs
    • Risk & Consequence Discussion
    • Decision & Funding Triggers
    • Incident Escalation & Postmortem Process
    • Incident Response & Notification Procedures
    • Decision & Next Steps
First-Party AI

1-2 minutes please — Your AI agent is working

First-Party AI™ can make mistakes. Always check important information.