Nerc Cip Requirements

It has been set that as the deadlines for the NERC-CIP standards approach, electric utilities and power plants are required to begin implementing some of the necessary security measures so as to meet the new NERC CIP requirements.

Of course there is still a lot at stake and with time running out, a disturbing question remains hovering around us as to whether the utilities have clear understandings about the NERC CIP requirements especially the new version 4 requirements. Luckily enough, the only noticeable change in version 4 was the newly introduced CIP:002 which deals with the identification of the Critical Assets and even the Critical Cyber Assets, making it much more easier for such utilities to be able to determine what’s critical and what’s not.

Other NERC CIP requirements include; policies with adherence monitoring and change control must be put in place and documented, establishment of an electronic security perimeter that provides disable ports and services not required, monitor and log access 24x7x365, capable of performing Annual Vulnerability Assessments and can carry out the documentation of the Network Changes.

Leave a Reply

Your email address will not be published. Required fields are marked *

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>

IMPORTANT! To be able to proceed, you need to solve the following simple math (so we know that you are a human) :-)

What is 2 + 10 ?
Please leave these two fields as-is: