Industries 
Bulk Power System NERC CIP Policies and Procedures
Bulk Power System NERC CIP Policies and Procedures
Encari helps electric utilities identify and develop (i.e., document) sustainable core security policies and procedures required to achieve NERC CIP compliance, and more importantly, to maximize assurance that their workforces, business partners, and end-consumers are safe and secure. Additionally, security policy and procedure management is not simply a documentation exercise – policies and procedures need to be instituted, enforced and maintained on an ongoing basis, and exceptions need to be strictly managed. Encari is your answer for acquiring thought leadership and support for your ongoing security policy and procedure management strategy and operations.
These policies and procedures include:
- The information protection program for critical cyber assets.
- Change control and configuration management procedures.
- Personnel risk assessment procedures.
- Electronic access control processes.
- Electronic access monitoring procedures.
- Physical access monitoring procedures.
- Procedures for logging electronic and physical access.
- Test procedures for changes to cyber assets.
- Systems security management procedures, including documenting open ports and services, security patch management, malicious software prevention, and account management.
- Security status monitoring procedures.
- Cyber security incident response plan and procedures.
- Recovery plans and procedures.