Supporting our customers with NERC CIP compliance. James McQuiggan, CISSP



Similar documents
NERC Cyber Security. Compliance Consulting. Services. HCL Governance, Risk & Compliance Practice

The first step in protecting Critical Cyber Assets is identifying them. CIP-002 focuses on this identification process.

Honeywell Industrial Cyber Security Overview and Managed Industrial Cyber Security Services Honeywell Process Solutions (HPS) June 4, 2014

Completed. Document Name. NERC CIP Requirements CIP-002 Critical Cyber Asset Identification R1 Critical Asset Identifaction Method

Control System Integrity (CSI) Tools and Processes to Automate CIP Compliance for Control Systems

SCADA Compliance Tools For NERC-CIP. The Right Tools for Bringing Your Organization in Line with the Latest Standards

Olav Mo, Cyber Security Manager Oil, Gas & Chemicals, CASE: Implementation of Cyber Security for Yara Glomfjord

Automating NERC CIP Compliance for EMS. Walter Sikora 2010 EMS Users Conference

Security for. Industrial. Automation. Considering the PROFINET Security Guideline

GE Measurement & Control. Cyber Security for NERC CIP Compliance

Cyber Security for NERC CIP Version 5 Compliance

Effective Defense in Depth Strategies

Implementation Plan for Version 5 CIP Cyber Security Standards

Standard CIP Cyber Security Systems Security Management

TASK TDSP Web Portal Project Cyber Security Standards Best Practices

Information Shield Solution Matrix for CIP Security Standards

NERC CIP Compliance. Dave Powell Plant Engineering and Environmental Performance. Presentation to 2009 BRO Forum

Security Solutions to Meet NERC-CIP Requirements. Kevin Staggs, Honeywell Process Solutions

Safety Share Who is Cleco? CIP-005-3, R5 How What

ReliabilityFirst CIP Evidence List CIP-002 through CIP-009 are applicable to RC, BA, IA, TSP, TO, TOP, GO, GOP, LSE, NERC, & RE

Verve Security Center

GE Oil & Gas. Cyber Security for NERC CIP Versions 5 & 6 Compliance

Ovation Security Center Data Sheet

Cyber security tackling the risks with new solutions and co-operation Miikka Pönniö

LogRhythm and NERC CIP Compliance

Standard CIP 007 3a Cyber Security Systems Security Management

Secondary DMZ: DMZ (2)

Cyber Security Compliance (NERC CIP V5)

NERC CIP Substation Cyber Security Update. John M Shaw Presentation to UTC Region 7 February 19, 2009 jshaw@garrettcom.com

i-pcgrid Workshop 2015 Cyber Security for Substation Automation The Jagged Line between Utility and Vendors

Critical Controls for Cyber Security.

John M Shaw Presentation to UTC Region 7 February 19, 2009 jshaw@garrettcom.com

North American Electric Reliability Corporation (NERC) Cyber Security Standard

TRIPWIRE NERC SOLUTION SUITE

1B1 SECURITY RESPONSIBILITY

Ovation Security Center Data Sheet

North American Electric Reliability Corporation: Critical Infrastructure Protection, Version 5 (NERC-CIP V5)

The Next Generation of Security Leaders

CIP- 005 R2: Understanding the Security Requirements for Secure Remote Access to the Bulk Energy System

GE Measurement & Control. Cyber Security for Industrial Controls

ABB Automation Days, Madrid, May 25 th and 26 th, Patrik Boo What do you need to know about cyber security?

Protecting productivity with Plant Security Services

Industrial Security for Process Automation

Cyber Risk Mitigation via Security Monitoring. Enhanced by Managed Services

Summary of CIP Version 5 Standards

Information Blue Valley Schools FEBRUARY 2015

NERC CIP Compliance with Security Professional Services

NERC CIP VERSION 5 COMPLIANCE

F G F O A A N N U A L C O N F E R E N C E

NERC Cyber Security Standards

How to Integrate NERC s Requirements in an Ongoing Automation and Integration Project Framework

Safe Network Integration

IT Best Practices Audit TCS offers a wide range of IT Best Practices Audit content covering 15 subjects and over 2200 topics, including:

Document ID. Cyber security for substation automation products and systems

Technology Solutions for NERC CIP Compliance June 25, 2015

Alberta Reliability Standard Cyber Security Personnel & Training CIP-004-AB-5.1

Alberta Reliability Standard Cyber Security System Security Management CIP-007-AB-5

FERC, NERC and Emerging CIP Standards

NovaTech NERC CIP Compliance Document and Product Description Updated June 2015

Effective Use of Assessments for Cyber Security Risk Mitigation

Network Security. Outlines: Introduction to Network Security Dfii Defining Security Zones DMZ. July Network Security 08

Alberta Reliability Standard Cyber Security Configuration Change Management and Vulnerability Assessments CIP-010-AB-1

How To Evaluate A Cooperative For Safety

Firewall Audit Techniques. K.S.Narayanan HCL Technologies Limited

CONTROL SYSTEM VENDOR CYBER SECURITY TRENDS INTERIM REPORT

Industrial Cyber Security. Complete Solutions to Protect Availability, Safety and Reliability of Industrial Facilities

Alberta Reliability Standard Cyber Security Implementation Plan for Version 5 CIP Security Standards CIP-PLAN-AB-1

ICS Cyber Security Briefing

April 8, Ms. Diane Honeycutt National Institute of Standards and Technology 100 Bureau Drive, Stop 8930 Gaithersburg, MD 20899

Lessons Learned CIP Reliability Standards

FIREWALL CHECKLIST. Pre Audit Checklist. 2. Obtain the Internet Policy, Standards, and Procedures relevant to the firewall review.

NERC CIP Whitepaper How Endian Solutions Can Help With Compliance

Remote Services. Managing Open Systems with Remote Services

Innovative Defense Strategies for Securing SCADA & Control Systems

INCIDENT RESPONSE CHECKLIST

RESILIENCE AGAINST CYBER ATTACKS Protecting Critical Infrastructure Information

Vendor Risk Assessment Questionnaire

ICANWK406A Install, configure and test network security

Network/Cyber Security

The Protection Mission a constant endeavor

Protecting Organizations from Cyber Attack

BUILDING A SECURITY OPERATION CENTER (SOC) ACI-BIT Vancouver, BC. Los Angeles World Airports

Invensys Security Compliance Platform

How To Protect Your School From A Breach Of Security

ABB s approach concerning IS Security for Automation Systems

Industrial Cyber Security 101. Mike Spear

GE Measurement & Control. Cyber Security for NEI 08-09

8/27/2015. Brad Schuette IT Manager City of Punta Gorda (941) Don t Wait Another Day

Secure Access into Industrial Automation and Control Systems Best Practice and Trends

CYBER SECURITY Is your Industrial Control System prepared? Presenter: Warwick Black Security Architect SCADA & MES Schneider-Electric

Network Security: 30 Questions Every Manager Should Ask. Author: Dr. Eric Cole Chief Security Strategist Secure Anchor Consulting

QUESTIONS & RESPONSES #2

Retention & Destruction

An Overview of Information Security Frameworks. Presented to TIF September 25, 2013

NERC CIP Tools and Techniques

Transcription:

Supporting our customers with NERC CIP compliance James, CISSP

Siemens Energy Sector Energy products and solutions - in 6 Divisions Oil & Gas Fossil Power Generation Renewable Energy Service Rotating Equipment Power Transmission Power Distribution Siemens Energy, Inc., 2010. Confidential and Proprietary. All Rights Reserved. Energy 2

Enterprise Wide Power Generation Management Waste-fired Cogeneration Coal-fired Power Wind Power Combined Cycle Nuclear Power Desalination Industrial Power Coal Gasification Biomass Power District Heat Power Siemens Energy, Inc., 2010. Confidential and Proprietary. All Rights Reserved. Energy 3

Mapping the CIP Standards to Siemens competencies CIP Version 1 Current Standards CIP 001 Sabotage Reporting CIP 002 CCA Identification CIP 003 Security Management CIP 004 Personnel, Training CIP 005 Electronic Security CIP 006 Physical Security CIP 007 Systems Security CIP 008 Incident Reporting & Response CIP 009 Recovery Plans Siemens CERT Cyber asset security and expertise (003, 005,007) Global Data Pool international personnel tracking and notification (004) Learn@ Siemens NERC CIP CBT (004) Relationship with Verifications Inc (004) Information Security Program (004) Physical Security Expertise through Siemens Industry Building Technologies Division (006) Expert I&C controls / Support (005, 007, 009) Member NERC Standards Committee (all) Security Consulting Services (all) CISSP, CPP Coordination (all) Siemens Capabilities to the NERC CIP Standards Siemens Energy, Inc., 2010. Confidential and Proprietary. All Rights Reserved. Energy 4

Siemens NERC CIP Policies NERC CIP Compliance Database Customer Notifications 12 hours of termination 7 days for other changes Track employees training and background checks Siemens Critical Cyber Asset Training Program Specific for CCA s or BES cyber systems Remote Access policies and procedures from Siemens (crsp) Siemens Energy, Inc., 2010. Confidential and Proprietary. All Rights Reserved. Energy 5

Siemens NERC CIP Policies Personal Risk Assessments 3 rd party background check company Secure web-based screening ISO 9001:2000 certified Local and state for all 50 states Security Awareness Program Bi-annual manager and employee online training New-hire orientation program Information security advisor program Company Newsletters Internal control system audits on information security Siemens Energy, Inc., 2010. Confidential and Proprietary. All Rights Reserved. Energy 6

NERC CIP Cyber Security Standards CIP002-009 - Eight Standards / 41 Requirements CIP-002 CIP-003 CIP-004 CIP-005 CIP-006 CIP-007 CIP-008 CIP-009 CRITICAL CYBER ASSETS MANAGEMENT CONTROLS PERSONNEL AND TRAINING ELECTRONIC PHYSICAL SYSTEMS MANAGEMENT INCIDENT REPORTING & RESPONSE PLANNING RECOVERY PLANS FOR CCA 1. CRITICAL ASSETS 2. CRITICAL CYBER ASSETS 3. ANNUAL REVIEW 4. ANNUAL APPROVAL 1. CYBER POLICY 2. LEADERSHIP 3. EXCEPTIONS 4. INFORMATION PROTECTION 5. ACCESS CONTROL 6. CHANGE CONTROL 1. AWARENESS 2. TRAINING 3. PERSONNEL RISK ASSESSMENT 4. ACCESS 1. ELECTRONIC PERIMETER 2. ELECTRONIC ACCESS CONTROLS 3. MONITORING ELECTRONIC ACCESS 4. CYBER VULNER- ABILITY ASSESSMENT 5. DOCUMEN- TATION 1. PLAN 2. PHYSICAL ACCESS CONTROLS 3. MONITORING PHYSICAL ACCESS 4. LOGGING PHYSICAL ACCESS 5. ACCESS LOG RETENTION 6. MAINTE- NANCE & TESTING 1. TEST PROCEDURES 2. PORTS & SERVICES 3. PATCH MANAGEMENT 4. MALICIOUS SOFTWARE PREVENTION 5. ACCOUNT MANAGEMENT 6. STATUS MONITORING 1. CYBER INCIDENT RESPONSE PLAN 2. DOCUMEN- TATION 1. RECOVERY PLANS 2. EXERCISES 3. CHANGE CONTROL 4. BACKUP & RESTORE 5. TESTING BACKUP MEDIA BLACK Customer Responsibility RED T3000 Feature BLUE Siemens Service Siemens Building Technology (SBT) 7. DISPOSAL OR REDEPLOY- MENT 8. CYBER VULNERABILITY ASSESSMENT 9. DOCUMEN- TATION Siemens Energy, Inc., 2010. Confidential and Proprietary. All Rights Reserved. Energy 7

SPPA-T3000 Control System Security Features Intranet DMZ Firewall/ VPN Router HMI level Firewall Terminal Server Internet VPN Tunnel Siemens Remote Service SPPA-T3000 ESP and security zone architecture (Defense in Depth) Secure remote access Monitoring Malware protection software Application Automation Account management Security patch management Siemens Energy, Inc., 2010. Confidential and Proprietary. All Rights Reserved. Energy 8

Getting Security Baked-in Work with your vendors to have the security baked in the products They want to make you reliable AND secure Flexibility, documentation and agreements (contracts) DHS Procurement Language Helpful to assisting you with getting secure & reliable product Discuss the OEM / Vendor security policies Develop a policy for vendors, 3 rd party companies Personal Risk Assessments Training of their products Siemens Energy, Inc., 2010. Confidential and Proprietary. All Rights Reserved. Energy 9

Questions?

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information