Nuclear Cybersecurity Management–Transitioning from Project to Program-Spreadsheets to Database With the Milestone 8 full implementation date here, nuclear power plants (NPP) face a host of new challenges. Among those challenges is how they might go about validating their completed CDA assessments and sustaining their cybersecurity program. Regardless of their current state, they must ask themselves …
Also, chances are, you did not have the luxury of getting all the cyber assessment workload done internally; you might have engaged outside contractors and consultants (sometimes in large numbers) trying to get ready for Milestone 8. Â The Milestone 8 Inspection date is nearing and project budgets are shrinking; you may now have to manage the program with constraints of in-house resources.
Six times in 2013, Iranian hackers took over the control system for the Bowman Avenue Dam in Rye Brook, New York. When the news broke, reporters became focused on the vulnerability of America’s infrastructure. They missed an important point. The Bowman Avenue Dam isn’t exactly declared as a critical infrastructure at the current moment. It …
The task of baselining asset configurations and managing changes on that baseline can be difficult and labor intensive, especially when multiple sites and silos of information are involved. Using spreadsheets may work temporarily, but it is not sustainable by any means; it is error-prone and may expose the facility to additional risks. Using homegrown applications …
NERC CIP-010 Configuration Baseline Management—Need for Automation Read More »
The North American Electric Reliability Corporation (NERC) standards provide a framework to identify and protect critical infrastructure assets. NERC has emphasized CIP-010 configuration change management as one of the most important CIPs that must be addressed. NERC has provided a separate standard of practice. This practice is much more rigorous than the traditional IT configuration …
WizNucleus will be exhibiting on October 19-20 at this year’s annual Grid Security Conference (GridSecCon 2016) held in Quebec, Canada October 18-21, 2016. Please join us at our booth (booth #20) to see our latest NERC CIP compliance software – CyberWiz Pro (CWP). Let us show you how we can make your NERC CIP program …
Visit WizNucleus at GridSecCon Quebec City October 18-21 Read More »
Yes, implementing a good NERC compliance management package helps you manage your compliance data so audits can go smoothly. However, choosing a NERC CIP compliance management software solution that integrates and helps operationalize key tasks gives you the opportunity to improve overall enterprise security. There are many key security-related processes that NERC CIP requires you …
Improve Overall Security with a NERC CIP Software Package Read More »
NERC CIP compliance tracking and management is a highly process oriented and extremely data-capture intensive task, requiring the ability to manage large amounts of data and task workflows. Specialized software for management of NERC CIP compliance is essential for the continued long- term success of the CIP program. Those utilities who choose to customize their …
As NERC CIP v6 got approved by FERC’s Order 822 earlier this year, the burden of meeting compliance requirements and ensuring the protection of BES Cyber Assets is only increasing. The Critical Infrastructure Protection (CIP) standards are designed to provide the minimum requirements that an enterprise will require to prevent faults and cyber-attacks, and ensure …
NERC CIP v6 Compliance – Three Things to Consider Read More »
Take the next step to protect your environment now with a free demo
