Automate Change Control and Configuration Integrity

WizNucleus Cyberwiz-Pro for NERC CIP Configuration Change Control Management

Configuration change management for NERC CIP version 5 is a major challenge for registered BES entities. Without a commercially engineered tool, the task can be labor intensive and error-prone.

Cyberwiz-Pro from WizNucleus is a mature application that will make CIP-10 change control process simple and sustainable. Designed specifically for NERC CIP compliance management, the software comes with preconfigured change control workflows and other powerful features to operationalize the configuration change control process for NERC CIP. The functionality in Cyberwiz-Pro for change control include:

  • Creation of change request on the fly
  • Processing approvals based on customer process (at each step; multiple approval levels, escalations)
    • Operations engineering analysis
    • Impact analysis
    • Emergency analysis
    • NERC analysis
  • Creation of the test plan
  • Closed loop update of the baseline
  • Ongoing monitoring for configuration changes

Users (reviewers, implementers, approvers) in the work flow have role-based Inboxes that are set up for their work queue. An authorized user can review the change detail along with the devices that are impacted as well as the CIP requirement that accompanies that change. Device details and CIP details are available directly on the screen for reference.

Change and Configuration ManagementAssessment information can be added for by each reviewer, making the information available to all the users at each step of the process, as well as being logged for evidence.

Cyberwiz-Pro monitors things such as ports, services, patches, and user accounts for any change to the baseline. For example, if there is a change to a port, an alert is sent to the person responsible for evaluating that change. If it was an unapproved change a user might check to see if it was an emergency change and deal with it accordingly (e.g., approve). If it was an unapproved change then the user has the ability to restore to the original baseline.