Using Skybox Solutions to Achieve NERC Compliance

The North American Electric Reliability Corporation (NERC) provides compliance and enforcement programs for bulk power system owners, operators and users. These programs are driven by standards that focus on the security of critical infrastructures. The Critical Infrastructure Protection Standard (CIP) is segmented into eight sections that address different aspects of protecting Cyber Assets. To determine the security of an asset connected to a complex network, a clear understanding of the value, the impact of loss, and the network exposure of the asset is required. This challenge is exasperated by complexity and rapid change along with a constant stream of new vulnerability discoveries. To identify and quantify the risk to Cyber Assets, information about the network,    controls, policies, asset classification and vulnerabilities must be programmatically analyzed. This document maps the requirements stated in CIP with the functionality of the Skybox View solution set.  

Click here to download this whitepaper.