What is it?
Following the terrorist attacks of 2001 and the blackout of 2003, the North American Electric Reliability Corporation (NERC) published the Critical Infrastructure Protection (CIP) Standards to help energy companies protect against an outside attack on the nation’s energy grid via the internet. Inside the CIP standards are the eight Cyber Security Standards that companies must be completely compliant with by 2010, when NERC will begin to conduct audits.
Why do it?
CIP 002-009 is a requirement for all energy organizations that are part of the national energy grid. Failure to comply with this regulation not only results in fines, but weakens the United States’ Homeland Security.
How can we help?
SecureState’s experience and knowledge, developed while working with some of the top energy companies in the country and a governing body, provides your organization with a true picture of your compliance to CIP. SecureState can provide help from pre-audit of the Cyber Security standards to the validation of those controls.