Part 3 – Reporting Introduction NERC CIP standards are designed to protect the reliability and security of the North American bulk power system. Reporting requirements for cyber security can be fairly demanding. For example, Cyber incident reporting requirements mean that covered entities must report to CISA any covered cyber incidents […]
Yearly Archives: 2023
Part 4 – Readiness Introduction NERC CIP standards are designed to protect the reliability and security of the North American bulk power system. Readiness for NERC CIP compliance is arguably the most important of the four categories of best practices. In readiness, we help prepare the entity for compliance and […]
As the CISO for a bank aiming to prevent a successful ransomware attack and create a comprehensive security incident response plan, what must you know to ensure you have the best security posture? Let’s see what you need to review: Current Security Infrastructure Information about your bank’s existing security measures, […]
Part 2 – Governance Introduction NERC CIP standards are designed to protect the reliability and security of the North American bulk power system. Below we discuss NERC CIP best practices practices to help you maintain compliance and minimize the risk of fines or penalties: Governance Creating a strong governance for […]
Developing and implementing a cybersecurity strategy as a Chief Information Security Officer (CISO) means managing several key responsibilities: This blog looks at Proactive vs. Reactive approaches: Defining Goals The first step in creating a cybersecurity strategy is to define clear and measurable cybersecurity goals that align with the organization’s overall […]
Part 1 – Reconnaissance Introduction Ensuring compliance with NERC CIP (Critical Infrastructure Protection) regulations is crucial for an electric power utility to avoid fines and penalties. NERC CIP standards are designed to protect the reliability and security of the North American bulk power system. Below we discuss NERC CIP best […]