Achieving and maintaining compliance with new versions of NERC CIP requires continuous monitoring of critical assets as well as periodic collection of detailed audit evidence. The steps necessary to pass NERC CIP audits can be extremely time consuming, are often done manually and can be error-prone. New requirements in NERC CIP version 5 include security configuration change management, vulnerability management for BES Cyber Assets, and information protection, making the compliance process for BES organizations even more complex.
The NERC Solution Suite combines Tripwire Enterprise, Tripwire IP360 and Tripwire Log Center®, award-winning security configuration management, vulnerability management and incident detection solutions. The solution also includes specialized intelligence including policy rules, correlation rules, tools, templates, customized reports and dashboards derived through work with over 100 NERC Registered Entities and the NERC Regional Auditor community. Together with customized services from NERC-experienced consultants, the NERC Solution Suite dramatically reduces the time and resources required to pass NERC CIP audits and minimize audit findings.
“The expanded coverage of all approved CIP requirements in the new version of the Tripwire NERC Solution Suite enhances our customers’ ability to improve power generation and transmission reliability by automating the audit process,” said Jeff Simon, director of service solutions at Tripwire. “Our extensive NERC-specific reports and dashboards in combination with our deep domain expertise help us deliver customized solutions for clients working toward CIP versions three and five compliance as well as stronger cybersecurity.”