With the mission of improving the bulk power system reliability and security in North America, NERC - North American Electric Reliability Council, develops and reinforces standards to ensure the system reliability, monitors the bulk power system, defines future adaptations, audits owners, operators, and users for preparedness; educates and trains industry personnel.
In May 2006, NERC started to use Critical Infrastructure Protection (CIP), which establishes a framework with the minimum requirements needed to ensure reliability and improve IT infrastructure supporting the system. This is the Cyber Security Framework.
NERC - CIP has issued nine reliability standards on cyber security with the purpose of identifying and protecting critical cyber assets:
To help electric utility firms comply with the North American Electric Reliability Council’s Critical Infrastructure Protection (NERC CIP) standards, Modulo has developed a specific Knowledge base that allows companies to identify and manage the controls required by the standard.
Modulo Risk Manager helps inventory assets supporting the system infrastructure and storing them in a centralized repository, implements a process for risk assessment and provides suggestions to implement controls defined by NERC-CIP based on best practices. It also ranks assets and identifies most critical Cyber Assets, therefore helping actions and investments to be prioritized.
Modulo Risk Manager allows the organization manage risks and ensure compliance with all the standards defined by NERC CIP in an integrated and user friendly way, eliminating silos and reducing costs.