A leading US integrated power company is required to meet the government standards set forth by NERC (North American Electric Reliability Corporation). The NERC CIP (Critical Infrastructure Protection) plan is a set of requirements designed to secure the assets required for operating North America’s bulk electric system. The plan consists of 9 standards and 129 requirements covering the security of electronic perimeters and the protection of critical cyber assets as well as personnel and training, security management and disaster recovery planning.
“Using RedSeal reduced the time it takes us to evaluate our systems for specific vulnerabilities from one person/month to 15 minutes.
We can spend our time on mitigation, rather than assessment.”
– Director, NERC CIP Operations, Cybersecurity