Call
Ask an Expert
Tel: +1-281-673-2800
Find an Office
Email
Email Us

NERC CIP Compliance

NERC CIP Compliance

Our compliance services are based on the most current versions of North American Electric Reliability Corporation (NERC) standards and are expertly tailored to fit the needs and challenges of your specific registered entities. Our in-depth knowledge of the standards and audit process can help you understand how independent system operators, balance authorities and market rules can affect NERC Compliance at your specific facility.

Our Approach to NERC CIP Compliance

ABS Group has performed advanced compliance assessments for the US Department of Homeland Security, the US Coast Guard and numerous power, chemical and nuclear facilities. Our extensive background in the electrical sector and technical expertise in risk management can help ensure that your facility is compliant. We have vast experience participating in external audits, giving us the insight to guide you through the process of complying with NERC reliability standards.

Our wide area view of the reliability of the bulk electric system gives us a unique understanding of how NERC compliance functions. Below are specific ways we help you manage compliance.

To be decided

Cyber Alerts Delivered Anywhere

Training Programs

Strong NERC compliance training programs require knowledgeable subject matter experts. ABS Group can provide comprehensive staff training on all standards that apply to an organization.

We offer on-site and off-site courses specialized to your needs. We go beyond the NERC reliability standards by educating employees on the intent behind the standards.

By incorporating role-based training into your programs you’re promoting behavioral change and good cyber hygiene, throughout the organization, to prevent potential cyber incidents. 

 

Human Engagement

NERC CIP Asset Baselines

Knowing the cyber assets that are part of a facility’s Bulk Electric System (BES) is critical in identifying the risks and implementing the appropriate security controls. We offer services to scan all IP addresses and open ports on the networks utilizing various tools. We liaison with the facility and vendors to identify and document the business justification for each open port and assist with closing unjustifiable ports. Firewall rules reviews are also conducted to verify if they meet the requirements of the defined Electronic Security Perimeter (ESP). Additional automated or manual scans can be performed to discover software and firmware version numbers, link them to known vulnerabilities and identify available patches.

Maximized Results

New Facility Cybersecurity Design

We provide consulting services to new facility builds through assistance with vendor capability reviews, BES cyber system categorization, risk assessments, NERC CIP requirement applicability reviews, training, asset hardening and defining ESPs, Factory Acceptance Test (FAT), Site Acceptance Test (SAT), System Integration Testing (SIT) and commissioning, among others, to document baselines and evidence of compliance activities that will provide the facility owners and operators a head start in meeting ongoing NERC CIP compliance.

Our Services to Support NERC CIP Implementation

 

Cybersecurity Managed Services

Cybersecurity Managed Services

Our network monitoring and managed services provide you with a comprehensive understanding of your OT networks, management of your threats and persistent monitoring for potential attacks. From our centralized Industrial Security Operations Center (ISOC), we provide 24/7/365 OT monitoring and managed services that maximize your coverage to ensure the protection of your business and its sensitive data.

View More

Security, Threat and Vulnerability Assessments

Supply Chain Cyber Risk Management

Cyber attacks target equipment, industrial control systems (ICS) and devices required to run your operations safely and efficiently and defending your supply chain can be a complex, time-consuming task. ABS Group offers comprehensive cybersecurity services to protect your Operational Technology (OT) environment from supply chain threats.

View More

Cyber Security Specialized Consulting

Specialized Consulting

Our team of highly skilled and experienced ICS cybersecurity consultants brings together professionals from multiple industries and backgrounds to provide you with integrated capabilities. Specialized ICS security consulting is an end-to-end service for customers requesting agile cybersecurity solutions typically aimed at enhancing your organization's maturity.

View More

Counter Terrorism

Physical Security Risk Management

CIP-014-2 provides guidance to utilities for protecting transmission stations, transmission substations, and control centers, that if rendered inoperable or damaged as a result of a physical attack, could result in widespread instability, uncontrolled separation, or cascading with an interconnection. 

View More

Trending Topics

 

Lights On, Threats Off - Navigating Cybersecurity in the Power Industry

Recent attacks on critical infrastructure have forced the power industry to take a step back and precariously assess its OT and IT controls. As NERC CIP standards continue evolving to address today’s threats the heavy question remains: Is it enough?
Listen to Podcast
 

NERC Cybersecurity & CIP Compliance Solution for Renewable Operators

Explore how we helped a renewable operator assess cybersecurity risk and develop a compliance program that meets NERC CIP standards.
Read More
 

Integrating OT Cybersecurity to Legacy Equipment: How to Bridge the Gap in the Era of Automation

In this webinar, we cover the most common cyber vulnerabilities in vessel systems and port operations and how they can be addressed as part of a comprehensive OT cybersecurity program.
Watch Webinar
Back to top