With the ever-growing threats of cyber attacks targeting the assets within the Electronic Security Perimeter the Energy industry has taken a proactive approach to ensure their systems are meeting the security requirements specified by NERC CIP. The NERC CIP controls are very high level, and require a more in depth analysis of the system configuration, organizational policies, and other components that effect the overall cybersecurity posture of the organization.
For nearly a decade DNC Corp has been supporting the unique cybersecurity requirements that any energy company faces from the unique industrial systems (SCADA environment) to the unique communication methods of the SCADA network. DNC Corp has performed thousands of cybersecurity audits utilizing many different controls (e.g. DoD DIACAP, NIST 800-53, SOX, HIPAA, DCID, and more) that gives us a strategic advantage while performing NERC CIP audits. Our auditing process is much more comprehensive compared to our competition as we scrutinize each NERC CIP control with control enhancements from different standards to ensure the best internal control audit possible.
Whether your organization is trying to develop a NERC CIP program or your organization needs an independent assessment of its current NERC CIP program let DNC Corp bring our expertise and experience to give you the best possible assessment of your infrastructure. DNC can help evaluate, develop remediation strategy, and remediate issues discovered while auditing the:
- Critical Cyber Asset Identification
- Security Management Controls
- Personnel & Training
- Electronic Security Perimeter(s)
- Physical Security of Critical Cyber Assets
- Systems Security Management
- Incident Reporting and Response Planning
- Recovery Plans for Critical Cyber Assets