SANS Industrial Control Systems Security Blog: Tag - CIP

One CIP, Two CIP, Red CIP, Blue CIP

This blog was written by - Tim Conway with contributions, edits, and research from Ted Gutierrez and Kevin Perry Looking at the Ukraine cyber-attacks through the various lenses of NERC CIP Following the cyber-attacks which impacted the Ukrainian electric system on December 23, 2015 there were a number of public statements and discussions asking … Continue reading One CIP, Two CIP, Red CIP, Blue CIP


ES-ISAC Changes Require Plan Updates

Did you hear about the NERC registered entity that got a PV for failing to update the Cyber Security Incident response plan within thirty calendar days of a change? How about the registered entity that got a PV because they didn't notify the ES-ISAC of a Reportable Cyber Security Incident? Well if you don't act … Continue reading ES-ISAC Changes Require Plan Updates


NERC CIP is hard!

If you are a CIP practitioner responsible for developing or maintaining a NERC CIP compliance program you know how tough a job that really is - there is just no denying that NERC CIP is hard! I've been there and I know first-hand the challenges of keeping the wheels on the CIP train all rolling … Continue reading NERC CIP is hard!