T

Current documentation of NERC CIP Standards 002-009 is available in our CIP Compliance Library.

How USDN Can Assist Your Utility Organization with NERC CIP 002-009

USDN has extensive experience with control system and SCADA network security audit. We work with electric transmission clients to develop viable controls, processes and audit mechanisms to ensure compliance with NERC CIP Security Standards CIP 002-009.  Our experience with the testing of SCADA systems has involved live-fire exercises in conjunction with the Department of Energy.
Depending upon the needs of the utility organization, the USDN CIP program group can:

• Provide solutions for operational network (SCADA) monitoring, compliance and audit requirements.
• Perform vulnerability assessments on SCADA and critical control system cyber assets. This process includes identification of vulnerabilities, CIP compliance gaps, and a prioritized plan for remediation and implementation of solutions for compliance deficiencies.
• Conduct pre or post-CIP audit remediation.
• Design and implement a CIP compliance audit readiness program.
• Design a plan for continuous compliance.

USDN’S PerfectWitness IDS

Compliance Monitoring, Insight and Management. PerfectWitness IDS offers simple, cost-effective monitoring and control of your SCADA and operational networks. Our appliance provides your organization with insight into its compliance with NERC CIP 002-009 security requirements through comprehensive real-time views of network security events, vulnerabilities and policy violations.

Audit and Compliance

NERC CIP Standards 002-009 require that utilities demonstrate compliance in the form of documented evidence of processes and security controls.  Management of evidentiary documentation will be a must for both initial and subsequent compliance audits. Although paper trails may adequately demonstrate compliance for some requirements, audit records generated electronically from Critical Cyber Assets will provide a more accurate, reliable, cost effective and efficient audit trail.

PerfectWitness IDS captures and preserves historic packet-level information associated with security events, satisfying audit and compliance for NERC CIP Cyber Security Standards 002-009.

Secure Preservation of Data

PerfectWitness IDS stores data securely. Our appliance has been designed to ensure information can only be captured and not altered. Access is configurable, enabling individualized viewing privileges.

Effective Security Monitoring and Targeted Remediation

PerfectWitness IDS can be easily configured to monitor, detect and prioritize security events in accordance with NERC CIP requirements and security policies.  Once PerfectWitness IDS is configured for your organization, its intuitive reporting module enables authorized personnel to easily see the highest priority items, escalate and resolve.  Underlying packet-level data is captured, so you can effectively target your efforts and quickly determine the appropriate course of action.

Our solution is scalable. Whether your operational network is large or small, PerfectWitness IDS will provide efficiency and free up your personnel to perform strategic objectives, target remediation efforts and not fight fires.

Business Insight

PerfectWitness IDS is not just an IT tool. Its powerful yet elegant executive reporting function synthesizes event findings and network activity to enable all levels of management to understand what the data means.

Contact Us

For information about how USDN can assist your organization with its specific NERC CIP needs, please contact us at This e-mail address is being protected from spambots. You need JavaScript enabled to view it or call (866) 930-4312 (Toll Free).