nerc cip services & solutions - honeywell process · pdf filefeatures & benefits...
TRANSCRIPT
NERC CIP Services & Solutions
NERC CIP Services & Solutions
F E AT U R E S & B E N E F I T S
• Expertiseintheinterpretation
andapplicationoftheNERCCIP
ReliabilityStandards
• Largestnumberofindustrial
cybersecurityconsultantsofany
consultingorganization
• Over10yearscybersecurity
experienceinprocesscontrol
environments
• Vendorneutral—experience
withover60differentindustrial
controlsystems
• Multidisciplinaryteamableto
offeracompleterangeofNERC
CIPservicesandsolutions
A C O M P L E T E N E R C C I P C O M P L I A N C E S O L U T I O N
IndustrialSecurity&Complianceprovidesthefollowingservicestoassistyou
inattainingandmaintainingNERCCIPcompliance.Someoftheseservices
refertoComplianceManager,asoftwaresolutionformanagingNERCCIP
complianceofferedbyHoneywell.
C I P - 0 0 2 : C R I T I CA L CY B E R AS S E T I D E N T I F I CAT I O N
• Risk-basedassessmentmethodology(RBAM)review
• CriticalCyberAsset(CCA)identificationmethodology
• AssessmentofCIPVersion4impact
• MaintainCCAlists,documentannualreviews–throughComplianceManager
C I P - 0 0 3 : S E C U R I T Y M A N AG E M E N T C O N T RO L S
• Cybersecuritypolicyreviewanddevelopment
• Proceduresforhandlingsecuritypolicyexceptions
• Informationprotectionprogramreviewanddevelopment
• Changeandconfigurationmanagementprograms
• Changemanagementprogramworkflowanddocumentation–through
ComplianceManager
• Configurationmanagementprogramworkflowanddocumentation–through
ComplianceManager
C I P - 0 0 4 : P E R S O N N E L A N D T RA I N I N G
• Developandmaintainsecurityawarenessprogram
• Developand/orimplementrole-basedsecuritytrainingprogram
• Automatetrainingtrackinganddocumentation–throughComplianceManager
• AutomatePersonnelRiskAssessmentdocumentationandreminders–through
ComplianceManager
• MaintainandautomaticallyupdatelistsofaccesstoCCAs–through
ComplianceManager
• AutomaticallyremoveCCAaccessuponemployeetermination–through
ComplianceManager
TheprincipalgoaloftheNorthAmericanElectricReliabilityCorporation(NERC)
CriticalInfrastructureProtection(CIP)ReliabilityStandardsistomaintainand
improvethereliabilityofthebulkelectricsystembyprotectingitfrompotential
disruptionsduetocybersecuritybreaches.
CompliancewithNERCCIP-002throughCIP-009placesaheavyburdenon
powerandutilitiescompanies.Andevenonceyou’veachievedcompliance,the
workofmaintainingitisconsiderable.Asyoursecurityprofilechanges,either
duetophysicalchangesinyourenvironment,increasingthreatstonetworksor
changesintheNERCCIPstandardsthemselves,yoursecurityprogrammust
evolveinordertoremaineffectiveandkeepyouincompliance.
IndustrialSecurity&ComplianceoffersacomprehensivesetofNERC
CIPservicesandsolutionstohelpyouachieveandmaintainNERCCIP
compliance—everythingfromtaskstargetedatspecificCIPrequirementsto
atotalNERCCIPcomplianceprogram.IndustrialSecurityandComplianceis
PoweredbyMatrikon,whichrepresentsvendorneutrality.Thisproductworks
withthird-partycontrolsystemsandapplications.
NERC CIP Services & Solutions
C I P - 0 0 5 : E L E C T RO N I C S E C U R I T Y P E R I M E T E R ( S ) ( E S P )
• Identify,documentandminimizesizeofESPs
• ProcessesandproceduresforESPaccesscontrol
• TechnologiesforESPaccesscontrol,includingSecureAdministrationGatewayEnvironment(SAGE)
• ImplementSIEMorlogmanagementformonitoringandloggingaccess
• AnnualcybervulnerabilityassessmentofESPaccesspoints
• AutomaticallymanageandupdateESPdocumentation–throughComplianceManager
C I P - 0 0 6 : P H YS I CA L S E C U R I T Y
• Developandupdatephysicalsecurityplan
• WithHoneywellIndustrialSecurity,designandimplementaccesscontrolandmonitoring
C I P - 0 0 7 : SYST E M S S E C U R I T Y M A N AG E M E N T
• Designtestenvironmentandtestprocedures
• Identifyopenportsandservices
• Disableunnecessaryportsandservices
• Patchmanagement,malicioussoftware,andaccountmanagementproceduresandtechnologies
• PrepareandsubmitTechnicalFeasibilityExceptionrequests
• ImplementSIEMorlogmanagementformonitoringandloggingaccess
• Annualcybervulnerabilityassessment
• PatchEvaluationSubscriptionService
• Automatepatchmanagementworkflowandverifyapplication–throughComplianceManager
• MaintainCCAaccesslistsandupdateautomatically–throughComplianceManager
• AutomaticallyremoveCCAaccessuponemployeetermination–throughComplianceManager
C I P - 0 0 8 : I N C I D E N T R E P O RT I N G A N D R E S P O N S E P L A N N I N G
• Implementorreviseincidentresponseplan
• Facilitateannualincidentresponseplantests
• Manageincidentresponseplandocumentationandworkflow–throughComplianceManager
C I P - 0 0 9 : R E C OV E RY P L A N S F O R C R I T I CA L CY B E R AS S E T S
• DevelopCCArecoveryplans
• TestandupdateCCArecoveryplans
• Managerecoveryplandocumentationandworkflow–throughComplianceManager
Honeywell Process Solutions
1250WestSamHoustonParkwaySouthHouston,TX77042
LovelaceRoad,SouthernIndustrialEstateBracknell,Berkshire,EnglandRG128WD
ShanghaiCityCentre,100JunyiRoadShanghai,China20051
www.honeywell.com/ps
‘Powered by Matrikon’ symbolizes that this product/solution is system
and application independent.
For More Information
FormoreinformationaboutIndustrialSecurityandCompliance,visitourwebsitewww.honeywell.com/psorcontactyourHoneywellaccountmanager.
www.matrikon.com
I M AG E / G R A P H I C
IndustrialSecurity&Compliancebelievesthatsecuringyourcriticalinfrastructureisanevolvingprocesswithfour
distinctphases.Regardlessofwhereyouareintheprocess,theIndustrialSecurity&Complianceteamcanhelp.
AS S E S S yourassetsandvulnerabilitiesagainstindustrystandards,regulatoryrequirementsandbestpractices.
R E M E D I AT E ournetworkwithacustom-designedsecurityprogram.
M A N AG E yournetworksecurityinvestmentwithsupportandtraining.
AS S U R E yoursecurityprogramisfunctioningasdesignedwithComplianceManager.
BR 903June 2011© 2011 Honeywell International Inc.
ASSESS
REMEDIATE
MANAGE
ASSURE Industrial Security & Compliance