NERC CIP Compliance Services
North American Electric Reliability Corporation (NERC) Critical Infrastructure Protection (CIP) standard provides a cyber-security framework for the identification and protection of Critical Cyber Assets that control or affect the reliability of North America’s bulk power systems.
All bulk power system owners, operators, and users must comply with NERC-approved Reliability Standards. These entities are required to register with NERC through the appropriate Regional Entity. If your organization is a NERC registered entity as a user, owner, and operator of the bulk power system in the United States you are required to be NERC CIP Compliant.
For more information please visit the NERC website.
We provide cyber security services helping entities meet security compliance needs. We have the experience, skills and resources to help your organization identify and protect critical cyber assets by helping you meet NERC CIP compliance requirements.
Why is NERC CIP Compliance Necessary?
NERC and regional entities use Compliance Monitoring and Enforcement Program to monitor, assess, and enforce compliance.
All Registered Entities are subject to audit and spot checks for compliance with all Reliability Standards applicable to the functions for which the Registered Entity is registered.
The Compliance Enforcement Authority shall determine whether there have been compliance violations and if so, the appropriate mitigating activities, and penalties and sanctions, as prescribed in the NERC Sanction Guidelines that may include monetary fines reaching six figures depending on the assessed compliance violation.
Types of NERC CIP Compliance Services Available
- Program Development and Project Management
- Compliance Audits and Assessments
- Electronic Security Perimeter (ESP)
- Patch Management
- Vulnerability Assessment and Management
- Asset Identification and Configuration Management
- Systems Security Management
- Reliability Standard Audit Worksheet Development
- Mock Audits
- Personnel and Training
- Policy, Process, Procedure Development, Documentation and Evidence Reporting
- Security Information & Event Management
- Incident Reporting and Response Planning
- Recovery Planning
I.S. Partners is happy to work in conjunction with RSI Security in order to help companies achieve NERC CIP compliance.