Business911 Regulatory Compliance and Audit services include:
NERC/CIP services include assessment, mitigation, of CIP-002 thru CIP-014 Critical Infrastructure Protection
Our extensive background in information security, network analysis, IT governance, and organizational resiliency provides a solid foundation to provide best of class NERC/CIP consultation. Our experience includes process control, manufacturing, and SCADA systems.
The North American Electric Reliability Corporation (NERC) is responsible for ensuring North America's bulk electric system is secure, adequate and reliable. To meet this challenge, NERC developed the Critical Infrastructure Protection (CIP) Cyber Security Standards.
Those current or pending standards are:
CIP-002 Cyber Security — BES Cyber System Categorization
CIP-003 Cyber Security — Security Management Controls
CIP-004 Cyber Security — Personnel & Training
CIP-005 Cyber Security — Electronic Security Perimeter(s)
CIP-006 Cyber Security — Physical Security of BES Cyber Systems
CIP-007 Cyber Security — System Security Management
CIP-008 Cyber Security — Incident Reporting and Response Planning
CIP-009 Cyber Security — Recovery Plans for BES Cyber Systems
CIP-010 Cyber Security — Configuration Change Management and Vulnerability Assessments
CIP-011 Cyber Security — Information Protection
CIP-012 Cyber Security – Communications between Control Centers
CIP-013 Cyber Security - Supply Chain Risk Management
CIP-014 Physical Security