5 Key NERC questions your organization should be able to answer right now:

1. How do you assess your current state of NERC compliance?
2. What is your process for gathering and retaining audit review?
3. How do you communicate and manage compliance activities both within and outside of your organization?
4. Do you know which assets and cyber assets are “critical”?
5. How do you address cyber security concerns on your control systems (SCADA and DCS) and your network?

If you’d like assistance with any of the above, please contact nerc@sirsol.com

Our Experience:

• 500,000 hours of designing, implementing and testing risk controls
• 70+ energy clients
• NERC compliance efforts management at over 90 locations
• Compliance assistance in all 8 NERC regions
• SCADA and DCS specific security analysis
• Critical Asset and Critical Cyber Asset identification & assessment
• CIP and ERO Compliance Program Development

A successful NERC compliance effort avoids the penalties for non-compliance (including up to $1 million per violation per day and public posting of the violation) and helps avoid the risk of substantial liability when a company is found to contribute to reliability issues with the bulk electric system. However, it also should mitigate operational and financial risks, support business goals and objectives, and capture savings associated with proper scoping and planning (otherwise implementation costs escalate drastically as mandatory compliance dates near).

We Team With You to Achieve Success

• Project leadership experience managing the entire compliance effort
• Proven methodologies and processes to achieve compliance and business goals
• Integrated, sustainable, and adaptable NERC solutions
• Experienced consultants (averaging 15 years of experience) with qualifications required for successful NERC CIP compliance (CISA, CISSP)
• Scalable service delivery options
• Holistic approach based on business objectives

Complete NERC Compliance and Critical Infrastructure Protection Services

• Provide NERC CIP & ERO subject matter expertise and guidance
• Develop sustainable NERC compliance programs
• Perform critical asset and critical cyber asset assessments
• Develop NERC compliance programs
• Develop and implement control self assessments
• Assess NERC compliance system requirements and provide tool recommendations
• Conduct NERC compliance readiness evaluations, risk assessments, and gap analyses
• Provide NERC training and standards education
• Prepare awareness materials and develop communication strategy
• Identify and manage mitigation activities

On August 14, 2003, the largest blackout in North American history occurred, impacting an estimated 50 million people in the United States and Canada, resulting in financial losses of approximately $6 billion. In response to this event, the North American Electric Reliability Corporation was certified as the Electric Reliability Organization to mandate standards and requirements to ensure the reliability of the Bulk Electric System. Compliance with NERC and regional reliability standards is now mandatory and enforceable, with significant financial penalties. All bulk power system owners, operators, and users must comply.

We can help.

Contact nerc@sirsol.com for additional information.