NERC CIP Services & Solutions

NERC CIP Services & Solutions

F E AT U R E S & B E N E F I T S

• Expertiseintheinterpretation

andapplicationoftheNERCCIP

ReliabilityStandards

• Largestnumberofindustrial

cybersecurityconsultantsofany

consultingorganization

• Over10yearscybersecurity

experienceinprocesscontrol

environments

• Vendorneutral—experience

withover60differentindustrial

controlsystems

• Multidisciplinaryteamableto

offeracompleterangeofNERC

CIPservicesandsolutions

A C O M P L E T E N E R C C I P C O M P L I A N C E S O L U T I O N

IndustrialSecurity&Complianceprovidesthefollowingservicestoassistyou

inattainingandmaintainingNERCCIPcompliance.Someoftheseservices

refertoComplianceManager,asoftwaresolutionformanagingNERCCIP

complianceofferedbyHoneywell.

C I P - 0 0 2 : C R I T I CA L CY B E R AS S E T I D E N T I F I CAT I O N

• Risk-basedassessmentmethodology(RBAM)review

• CriticalCyberAsset(CCA)identificationmethodology

• AssessmentofCIPVersion4impact

• MaintainCCAlists,documentannualreviews–throughComplianceManager

C I P - 0 0 3 : S E C U R I T Y M A N AG E M E N T C O N T RO L S

• Cybersecuritypolicyreviewanddevelopment

• Proceduresforhandlingsecuritypolicyexceptions

• Informationprotectionprogramreviewanddevelopment

• Changeandconfigurationmanagementprograms

• Changemanagementprogramworkflowanddocumentation–through

ComplianceManager

• Configurationmanagementprogramworkflowanddocumentation–through

ComplianceManager

C I P - 0 0 4 : P E R S O N N E L A N D T RA I N I N G

• Developandmaintainsecurityawarenessprogram

• Developand/orimplementrole-basedsecuritytrainingprogram

• Automatetrainingtrackinganddocumentation–throughComplianceManager

• AutomatePersonnelRiskAssessmentdocumentationandreminders–through

ComplianceManager

• MaintainandautomaticallyupdatelistsofaccesstoCCAs–through

ComplianceManager

• AutomaticallyremoveCCAaccessuponemployeetermination–through

ComplianceManager

TheprincipalgoaloftheNorthAmericanElectricReliabilityCorporation(NERC)

CriticalInfrastructureProtection(CIP)ReliabilityStandardsistomaintainand

improvethereliabilityofthebulkelectricsystembyprotectingitfrompotential

disruptionsduetocybersecuritybreaches.

CompliancewithNERCCIP-002throughCIP-009placesaheavyburdenon

powerandutilitiescompanies.Andevenonceyou’veachievedcompliance,the

workofmaintainingitisconsiderable.Asyoursecurityprofilechanges,either

duetophysicalchangesinyourenvironment,increasingthreatstonetworksor

changesintheNERCCIPstandardsthemselves,yoursecurityprogrammust

evolveinordertoremaineffectiveandkeepyouincompliance.

IndustrialSecurity&ComplianceoffersacomprehensivesetofNERC

CIPservicesandsolutionstohelpyouachieveandmaintainNERCCIP

compliance—everythingfromtaskstargetedatspecificCIPrequirementsto

atotalNERCCIPcomplianceprogram.IndustrialSecurityandComplianceis

PoweredbyMatrikon,whichrepresentsvendorneutrality.Thisproductworks

withthird-partycontrolsystemsandapplications.

NERC CIP Services & Solutions

C I P - 0 0 5 : E L E C T RO N I C S E C U R I T Y P E R I M E T E R ( S ) ( E S P )

• Identify,documentandminimizesizeofESPs

• ProcessesandproceduresforESPaccesscontrol

• TechnologiesforESPaccesscontrol,includingSecureAdministrationGatewayEnvironment(SAGE)

• ImplementSIEMorlogmanagementformonitoringandloggingaccess

• AnnualcybervulnerabilityassessmentofESPaccesspoints

• AutomaticallymanageandupdateESPdocumentation–throughComplianceManager

C I P - 0 0 6 : P H YS I CA L S E C U R I T Y

• Developandupdatephysicalsecurityplan

• WithHoneywellIndustrialSecurity,designandimplementaccesscontrolandmonitoring

C I P - 0 0 7 : SYST E M S S E C U R I T Y M A N AG E M E N T

• Designtestenvironmentandtestprocedures

• Identifyopenportsandservices

• Disableunnecessaryportsandservices

• Patchmanagement,malicioussoftware,andaccountmanagementproceduresandtechnologies

• PrepareandsubmitTechnicalFeasibilityExceptionrequests

• ImplementSIEMorlogmanagementformonitoringandloggingaccess

• Annualcybervulnerabilityassessment

• PatchEvaluationSubscriptionService

• Automatepatchmanagementworkflowandverifyapplication–throughComplianceManager

• MaintainCCAaccesslistsandupdateautomatically–throughComplianceManager

• AutomaticallyremoveCCAaccessuponemployeetermination–throughComplianceManager

C I P - 0 0 8 : I N C I D E N T R E P O RT I N G A N D R E S P O N S E P L A N N I N G

• Implementorreviseincidentresponseplan

• Facilitateannualincidentresponseplantests

• Manageincidentresponseplandocumentationandworkflow–throughComplianceManager

C I P - 0 0 9 : R E C OV E RY P L A N S F O R C R I T I CA L CY B E R AS S E T S

• DevelopCCArecoveryplans

• TestandupdateCCArecoveryplans

• Managerecoveryplandocumentationandworkflow–throughComplianceManager

Honeywell Process Solutions

1250WestSamHoustonParkwaySouthHouston,TX77042

LovelaceRoad,SouthernIndustrialEstateBracknell,Berkshire,EnglandRG128WD

ShanghaiCityCentre,100JunyiRoadShanghai,China20051

www.honeywell.com/ps

‘Powered by Matrikon’ symbolizes that this product/solution is system

and application independent.

For More Information

FormoreinformationaboutIndustrialSecurityandCompliance,visitourwebsitewww.honeywell.com/psorcontactyourHoneywellaccountmanager.

www.matrikon.com

security@matrikon.com

I M AG E / G R A P H I C

IndustrialSecurity&Compliancebelievesthatsecuringyourcriticalinfrastructureisanevolvingprocesswithfour

distinctphases.Regardlessofwhereyouareintheprocess,theIndustrialSecurity&Complianceteamcanhelp.

AS S E S S yourassetsandvulnerabilitiesagainstindustrystandards,regulatoryrequirementsandbestpractices.

R E M E D I AT E ournetworkwithacustom-designedsecurityprogram.

M A N AG E yournetworksecurityinvestmentwithsupportandtraining.

AS S U R E yoursecurityprogramisfunctioningasdesignedwithComplianceManager.

BR 903June 2011© 2011 Honeywell International Inc.

ASSESS

REMEDIATE

MANAGE

ASSURE Industrial Security & Compliance