Security Tools Evaluation and Recommendation
For NERC entities, determining appropriate security tools (e.g., Security Information and Event Management (SIEM), Configuration Monitoring, IDS/IPS, VPN, Intermediate Device, patching solutions, end-point protection) is frequently overwhelming because of the sheer variety and deployment options which easily lead to confusion, improper selection, and improper sizing of licensing and tools.Read More
CRSI assists in design and product specification for entities to ensure the solutions are properly scaled to the environment, licensed accordingly, capable of the desired results, and that implementation is within the time and budget constraints. This relieves the entity’s personnel to focus on other aspects of their program and to ensure that all normal operations tasks are completed.
Experience working with many entities’ implementations and understanding the struggles with their selected security tools has provided CRSI with the requisite knowledge to determine the proper scoping and approaches to the implementation of security tools.
Security Tools Configuration
NERC Standards require the completion of tasks which are extremely difficult to achieve through manual processes, and compliance departments usually lack the staffing levels required to achieve these manual processes. Therefore many entities implement automated security tools (e.g., Security Information and Event Management (SIEM), Configuration Monitoring, IDS/IPS, VPN, Intermediate Device, patching solutions, end-point protection) to aid in completion of the required tasks. Manufacturers rarely design these security tools to be used within the energy sector, and typically these tools are capable of performing tasks which completely exceed or are wholly unrelated to the CIP Requirements.Read More
CRSI’s expert IT personnel are versed in the CIP Standards and have experience installing, interconnecting, and configuring a wide variety of software tools. This expertise gives the CRSI teams the ability to simplify the process by avoiding pitfalls, enabling required components, and disabling features which may create vulnerabilities.
CRSI strategically partnered with more than 250 electric utilities in the last five (5) years for their NERC CIP Compliance Solutions. To find out more about how to create your Security Compliance Roadmap, call us today to schedule a free, no obligation consultation.