CIP Low

CIP Low: Compliance Program Guide This book is focused on protecting Low Impact only BES assets, and their associated BES Cyber Systems & Cyber Assets. Based on NERC CIP Standards CIP-002-5.1a and CIP-003-6, with relevant consideration for pending versions CIP-003-7 and CIP-003-TCA, the steps and actions needed to ensure NERC CIP compliance are laid out here in plain English. So whether you need a refresher ...

Read more

Protecting Critical Infrastructure finds ready audience

In our new book, Protecting Critical Infrastructure, Karl Perman and I approached the NERC CIP Standards with a broad brush. It just seemed like a lot of people could really benefit from an easy-to-read reference covering NERC CIP. This became apparent to us the more we worked with different people in the industry. We found a lot of knowledge but we also found a lot of gaps, usually due to the fact that mos ...

Read more

Protecting Critical Infrastructure

Protecting Critical Infrastructure: A Guide to Critical Infrastructure Protection Based on the North American Electric Reliability Corporation Critical Infrastructure Protection Standards - Now Available! This book presents the approach to critical infrastructure protection taken by the North American Electric Reliability Corporation’s CIP Standards. These standards apply to the electric industry, and serve ...

Read more

Process Driven Compliance – Protecting the Grid

Recently I have been discussing how process thinking and process technology can be used to produce more effective and proactive compliance controls. In particular, I have been doing a lot of work around NERC compliance - the regulations for the Electric Utility Industry. NERC compliance includes cyber security (CIP - Critical Infrastructure Protection) and operational compliance, often referred to as 693. W ...

Read more

Process Driven Compliance Controls

An interesting take on process is the role it can play in compliance. Internal compliance controls traditionally look to either enforce policies or monitor for compliance issues. While this approach has merits, it has several characteristics that fall short of the goals of the organization. First, the "process" portion of compliance controls often remains disconnected from the work people perform outside of ...

Read more

The New Frontier of Process Management

The latest BIG THING worth sharing is a remarkable evolution in process management - what I call "real-time process orchestration at the edge." It's big, really big, and companies that desire to remain relevant and successful need to pay attention. The concept is really the practical application of what I have being talking about for a long time - the use of Process Management to dramatically improve custom ...

Read more

© 2007 Terry Schurter. All rights reserved.

Scroll to top