Sph3r3 offers cybersecurity assessment and integration services surrounding CIP-002-1 through CIP-009-5.  Responsible Entities must identify their critical assets and critical cyber assets and then implement operational, electronic and physical security controls to protect these assets.  Sph3r3's experience in protecting SCADA controlled systems covers both electrical generation and transmission control systems.  Sph3r3 is here to work with your team to understand your environment, recognize the CIP standard correlation, develop a coordinated compliance effort and integrate the supporting cyber security controls.

 

Sph3r3 will help your organization to:

 

 

In an effort to aid organizations with their ongoing and impending compliance efforts Sph3r3 is making available a high level presentation detailing select methodologies.  The topics included are: Defining your Electronic Security Perimeter (ESP) Methodology Defining your Vulnerability Assessment Methodology Defining your Situational Awareness and Audit Trail Methodology   Download the presentation here.

 

Today’s information infrastructure interconnects every major public service infrastructure, making each of them nationally—and even globally—accessible to users. The Critical Foundations: Protecting America's Infrastructures, the Report of the President's Commission on Critical Infrastructure Protection , report produced by the Presidential Commission on Critical Infrastructure Protection, grouped America’s critical infrastructures into five categories: energy, telecommunications, physical distribution, banking and finance, and vital human services. U.S. dependence on these critical infrastructures makes their predictable and reliable operations a matter of national security. However, because they are owned and operated primarily by the private sector, their security is the shared responsibility of government and private industry.

The single most important infrastructure to the United States and its industries is its electrical production and distribution system. The complex system currently in place represents the backbone of the nation, for without electricity, telecommunications, banking and finance, transportation, and other vital services would not function. Consequently, the efficient and dependable production and distribution of electrical power is a vital national asset. When analyzing threats to information systems, the potential threats to supporting energy systems should also be evaluated since, without electricity, telecommunications and computer networks cannot function.

Sph3r3 recognizes this vital interdependency associated with the underlying power grid and its mission critical support systems and maintain relationships with the Department of Energy (DOE), the North American Electric Reliability Corporation (NERC) and the Federal Energy Regulatory Commission (FERC). We have architected security programs for Energy Management, Control and Trading Systems; and, DOE National Laboratories in support of this fundamental interdependence.