NERC CIP Services

Strengthening the cyber security of electric grid critical infrastructure.

The U.S. Department of Homeland Security (DHS) recently disclosed evidence suggesting cyber terrorism and national level threats against key energy infrastructure—the electricity system in particular—are increasing in frequency and sophistication. Given this reality, experts agree that the nation’s bulk power system and its operators must be prepared to identify, minimize, respond to and recover from any unplanned catastrophic event, including cyber attacks that could disrupt the power grid.

The North American Electric Reliability Council (NERC) was established to ensure the reliability of the North American bulk power system. One of NERC’s primary responsibilities is the development of standards for power system operation, including the Critical Infrastructure Protection (CIP) plan. This mandatory set of requirements, which applies to all entities that “materially impact” the reliability of the power system, identifies the minimum cyber controls and protections that power suppliers and generators must address. Under NERC CIP, covered entities are required to identify critical assets and regularly perform a risk analysis of those assets. Failure to comply with these standards can result is significant penalties and fines.

Protecting the Power Grid

Coalfire's NERC CIP services are designed to serve the needs of North American bulk power system covered entities with regards to CIP compliance. Coalfire offers a complete range of services built around the nine key areas of CIP compliance standards:

  • Sabotage
  • Critical Asset Identification
  • Security Management Controls
  • Personnel and Training
  • Electronic Security Perimeter
  • Physical Security Protection
  • Systems Security Management
  • Incident Reporting and Response Planning
  • Recovery Plans

Cyber Warfare Power Play

Coalfire is a nationally recognized leader in cyber risk management and compliance with thousands of assessments for public sector entities. Our unrivaled experience, proven processes, existing working aids and a compliance management portal equip us to provide comprehensive NERC CIP services that enable the establishment and maintenance of a successful compliance program while greatly reducing the risk of control failure or compliance deficiency fines.

Industry Resources