Anyone employed or associated with power grids understands that NERC CIP compliance is a big deal.
NERC stands for the North American Electric Reliability Corporation. It develops and enforces reliability standards for the supply of power in both the United States and Canada as well as northern Baja California, Mexico.
CIP stands for Critical Infrastructure Protection, a plan created by NERC to regulate, enforce, monitor and manage the physical and logical security of systems that manage the electric power of grids.
Failure by utility companies to comply with the NERC CIP regulations can result in substantial penalties. It’s believed that these fines can run as high as $1 million a day.
The regulations cover procedures and equipment that need to be in place to handle an assortment of threats to the Grid, including:
- Deliberate attacks from organized crime, industrial espionage, unfriendly nation-states and disgruntled employees
- Inadvertent threats from equipment failures or user/administrator errors
- Natural phenomena threats such as from hurricanes, earthquakes or solar activity.
Compliance also entails many other aspects such as:
- Sabotage reporting
- Identification and documentation/physical security of critical cyber assets
- Application of at least minimum security management
- Comprehensive reporting of cybersecurity incidents
- Recovery plans following business continuity and disaster recovery practices
NERC CIP Training
In 2016, CIP compliance Version 5 went into effect. One of its mandates covers expanded training requirements.
Tonex offers two classes in NERC CIP Training: a five-day hands on NERC CIP Training Bootcamp / Crash Course and a two-day Critical Infrastructure Protection (CIP) NERC Training.
CIP NERC Training covers structural changes and implementation plans for modified format of CIP, asset identification, cyber asset categories, bright line criteria, impact level determination and asset categorization.
Also learn about communication related requirements, electronic security perimeters, interactive remote access, physical protection of communication devices, network elements and transient devices.
NERC CIP Training Bootcamp / Crash Course empowers attendees with knowledge and skills covering version 5/6 standards and addresses the role of FERC, NERC and the Regional Entities.
Additionally learn approaches for identifying and categorizing BES Cyber Systems and requirements to implement and comply the standards including strategies for the version 5/6 requirements.
These courses are designed for security specialists, CIP Senior Manager, analysts, designer engineers, system operators, directors of CIP compliance and VPs of operations.
Why Choose Tonex?
–Tonex is the industry leader in cybersecurity and NERC CIP. Our courses are planned, designed and developed by NERC CIP experts in CIP implementation and audits.
–Presenting highly customized learning solutions is what we do. For over 30 years Tonex has worked with organizations in improving their understanding and capabilities in topics often with new development, design, optimization, regulations and compliances that, frankly, can be difficult to comprehend.
–Ratings tabulated from student feedback post-course evaluations show an amazing 98 percent satisfaction score.
–Reasonably priced classes taught by the best trainers is the reason all kinds of organizations from Fortune 500 companies to government’s most important agencies return for updates in courses and hands-on workshops
Contact us for more information, questions, comments.