NERC CIP Compliance Software
NP-View’s leading platform can help save time and resources in assessing and managing compliance with the network access requirements of CIP-002, CIP-003, CIP-005, CIP-007, and CIP-010.
NP-View’s Solutions to NERC CIP Compliance
Collecting Evidence & NERC CIP Audit Preparation
“If we didn’t have a software platform in place and one of our clients were to be audited, then it would be all hands on deck trying to figure out how to comply with the audit process to avoid financial penalties. Essentially, compliance would be a guessing game.”
— Chris Martin-Berry, Systems Engineer, Crown Computers
NERC CIP Report
NP-View allows compliance teams to collect and report evidence for the following requirements:
- CIP-002 – BES Cyber System Categorization; impact rating and 15-month review
- CIP-003 – Security Management Control; cyber security policy
- CIP-005 – Electronic Security Perimeter; remote access management
- CIP-007 – System Security Management; ports and services
- CIP-010 – Change Management and Vulnerability; configuration change management, configuration monitoring, vulnerability assessment
“Network Perception’s NP-View is basically what’s used by the auditors, so we figured if that’s what they use, that’s what we wanted to use as well.”
— David Fletcher, Lead Cybersecurity Analyst, PSEG
NERC-CIP Compliance FAQ
NERC (North American Electric Reliability Corporation) standards are a set of mandatory cybersecurity and operational standards developed by NERC and enforced by the Federal Energy Regulatory Commission (FERC) in the United States and the National Energy Board (NEB) in Canada.
Yes, NERC CIP (North American Electric Reliability Corporation Critical Infrastructure Protection) is mandatory for all entities that are defined as “Bulk Electric System” (BES) owners or operators in North America. This includes entities that own or operate high-voltage electric transmission lines, generation facilities, and control centers.
The purpose of the NERC CIP standards is to ensure the reliability and security of the North American power grid by establishing cybersecurity standards that BES owners and operators must follow. These standards are enforced by NERC, and non-compliance can result in significant penalties and fines. Therefore, compliance with NERC CIP is mandatory for all BES owners and operators in North America.