CEO REPORT

1. CEO REPORT Thomas F. Schrader ERCOT Board of Directors December 14, 2004

2. Fee Settlement Audit Response Action Plan Security Work Plan Chander Ahuja, Director of Security CEO Report

3. Challenge Effective use of resources Aggressive effort Cost savings Activities & projects Documentation & Justification Fee Settlement

4. Mgmt. Planning & Practices Fee Settlement Management Action Plan (MAP) Audits Roadmaps Management Action Plan Audit Response Management Activities Internal Control Environment Specific Projects Process Redesign • Mission/vision/goals • Org. structure • Budget -- review of activities/expenses • Cost tracking • Risk assessment • Mgmt. reporting • Internal control mgmt. program • Cultural change • Roles & responsibilities • Internal Audit • Fixed asset inventory • Lawson • Policies & procedures • Security initiatives • HR projects • Fixed asset management • Contracting & procurement • Hiring • Other TBD

5. Preliminary Programs Schedule

6. Provides comprehensive and consistent method to track all recommendations Improves accountability for management’s action plans Helps ensure completion dates are met Audit Tracking System

7. Security Work Plan 2005 Chander M. Ahuja Director of Security

8. Crown Jewels People, Information, Physical assets Responsibility Security is a part of every job at ERCOT Security lifecycle Requirements, Communicate, Integrate, Measure, Report Remediation process features High risk first, Business ownership for execution, Verify 2005 Goals Accountability Establish comprehensive, integrated ERCOT Security Practice Remediation with a concentrated effort Strategic Security Vision

9. Audits 2005 Security Plan Best Security Practices EY Roadmap ERCOT 2005 Security Plan Tasks to address Audit findings (Responses) Tasks to Establish strong practices (Practices) Tasks to close large gaps (Projects) Establish practices Remediation GOAL: Accountability

10. Asset Classification Initiative Secure Information Initiative Access Control Initiative Physical Security initiative Security Vision initiative Strategic Initiatives