The NERC (North American Electric Reliability Corporation) CIP (Critical Infrastructure Protection) is designed to secure the assets needed for operating North America’s bulk electric system. The CIP plan covers the security of electric perimeters and the protection of critical cyber assets, personnel training, disaster recovery planning, and security management.
In essence, the CIP plan or program coordinates the overall efforts of the NERC to improve the security of the North American power system. Some of these efforts include assessments of risk and preparedness, compliance enforcement, standards developments, raised awareness with regards to the key security issues, and the dissemination of critical information. Under CIP plan, entities such as owners, operators and users of the bulk power system are required to identify critical assets, and to perform a risk assessment and analysis of those assets regularly.
Besides, the NERC CIP also requires the use of firewalls for the implementation of cyber attack monitoring tools and to block vulnerable ports. CIP program requires the organization to enforce their IT controls for protecting access to critical cyber assets. CIP helps protect the security worries of the governments and international agencies.
Energy Management Pics