Standard Review - CIP-006

11
Standard Review CIP006 Physical Security of Critical Cyber Assets Shon Austin Senior Compliance Specialist

Transcript of Standard Review - CIP-006

Page 1: Standard Review - CIP-006

Standard Review ‐ CIP‐006Physical Security of Critical Cyber Assets

Shon Austin Senior Compliance Specialist

Page 2: Standard Review - CIP-006

CIP‐006‐3 OverviewPurpose: “CIP‐006‐3 is intended to ensure the implementation of a physical security program for the protection of Critical Cyber Assets.” 

2

1. Identify Electronic Security Perimeters (ESPs)

2. Physically locate cyber assets within ESPs

3. Define/build your Physical Security Perimeter (PSP)

a) May have to move some cyber assets

b) May have to deal with special cases

4. Control, Monitor, and Log access

5. Document, document, document!

Page 3: Standard Review - CIP-006

Identify ESP(s) and physically locate cyber assets within 

3

Page 4: Standard Review - CIP-006

Define/build your Physical Security Perimeter 

• “The Box” – Traditional 6‐wall boundary

– Controlled, logged, and monitored access

– Deters unauthorized access

– ESP must be enclosed within the box

– Compliance Application Notice 31:CEAs are to consider 96 square inches as the measurement for each maximum acceptable opening without physical protective measures in place

• Something else – Alternative measures

4

http://www.nerc.com/files/CAN-0031 CIP-006 R1 Acceptable Opening Dimensions.pdf
Page 5: Standard Review - CIP-006

Alarm

One ESP in one PSP: Control, Monitor & Log 

5

Control Center Building

PSP

ESP

Badge

Key

Keypad

Logbook

Guard

Biometric

CameraTest/Maintain Camera

Guard

Page 6: Standard Review - CIP-006

When you can not have the ideal “Box”

• Physical

– Conduit

– Fully enclosed cable tray

– Armored cabling

• What happens when you can not control physical access?

6

Page 7: Standard Review - CIP-006

PSP: Logical/Alternative Measures

• Logical

– Data encryption

– Circuit monitoring

Detect unauthorized access

Physical tampering

• Technical Feasibility Exception (TFE) required

7

Page 8: Standard Review - CIP-006

One ESP, Two PSPs in one facility

8

PSPPSP

Facility

ESP

ESP

Page 9: Standard Review - CIP-006

Two ESPs in Two Facilities

9Control Center

ESP ESP

Substation

PSPPSP

Page 10: Standard Review - CIP-006

One ESP spanning two facilities

1010

Control Center Substation

ESP

PSP PSP

“Protect the gap”

Page 11: Standard Review - CIP-006

Document in Physical Security Plan

• Develop process to control, monitor, and log access

• Develop process/procedures to test and maintain controls

• These processes and procedures are your Physical Security Plan

• Ensure Physical Security Plan is approved by Senior Manager or delegate

11


Virtualization, Cloud and CIP - WECC · •CIP-005-5 Part 2.2 –For all Interactive Remote Access sessions, utilize encryption that terminates at an Intermediate System. •CIP-006-6

Virtualization, Cloud and CIP - WECC · •CIP-005-5 Part 2.2 –For all Interactive Remote Access sessions, utilize encryption that terminates at an Intermediate System. •CIP-006-6

CIP-003-7 R2 Section 2 Physical Security Controls - CIP-003... · Standard/Requirement Implementation Dates CIP-003-7 Compared to CIP-003-6 CIP-002-5.1 R1 & R2 BES Cyber System Categorization

CIP-003-7 R2 Section 2 Physical Security Controls - CIP-003... · Standard/Requirement Implementation Dates CIP-003-7 Compared to CIP-003-6 CIP-002-5.1 R1 & R2 BES Cyber System Categorization

Cyber Security Physical Security of BES Cyber Systems Standards/CIP...CIP-006-5 — Cyber Security — Physical Security of BES Cyber Systems Page 3 of 35 4.2.3.4 For Distribution

Cyber Security Physical Security of BES Cyber Systems Standards/CIP...CIP-006-5 — Cyber Security — Physical Security of BES Cyber Systems Page 3 of 35 4.2.3.4 For Distribution

Standard CIP–002–3(X) — Cyber Security — Critical Cyber ......Standard CIP–002–3(X) — Cyber Security — Critical Cyber Asset Identification E. Regional Variances None

Standard CIP–002–3(X) — Cyber Security — Critical Cyber ......Standard CIP–002–3(X) — Cyber Security — Critical Cyber Asset Identification E. Regional Variances None

CIP-006-6 v Cyber Security v Physical Security of BES ...

CIP-006-6 v Cyber Security v Physical Security of BES ...

Petition - CIP-014-1 Filings to... · 2014. 5. 27. · Reliability Standard CIP-014-1 – Physical Secur ity. NERC requests that the Commission approve the proposed Reliability Standard

Petition - CIP-014-1 Filings to... · 2014. 5. 27. · Reliability Standard CIP-014-1 – Physical Secur ity. NERC requests that the Commission approve the proposed Reliability Standard

CIP Standard Pistol Revolver

CIP Standard Pistol Revolver

Cyber Security Physical Security of BES Cyber Systems Standards/CIP-006-6.pdf · CIP-006-6 — Cyber Security — Physical Security of BES Cyber Systems Page 3 of 32 4.2.3.5 Responsible

Cyber Security Physical Security of BES Cyber Systems Standards/CIP-006-6.pdf · CIP-006-6 — Cyber Security — Physical Security of BES Cyber Systems Page 3 of 32 4.2.3.5 Responsible

OFFICIAL MEXICAN STANDARD NOM-006-SCFI-2005 ALCOHOLIC ...

OFFICIAL MEXICAN STANDARD NOM-006-SCFI-2005 ALCOHOLIC ...

1 CIP-006-1 Physical Security of Critical Cyber Assets A Compliance Perspective Lew Folkerth CIP Compliance Workshop Baltimore, MD August 19-20, 2009 ©

1 CIP-006-1 Physical Security of Critical Cyber Assets A Compliance Perspective Lew Folkerth CIP Compliance Workshop Baltimore, MD August 19-20, 2009 ©

CIP-003-7 & CIP-003-8 Effective Dates and... · CIP-003-8 R4 Delegate CIP Senior Manager authority 7/1/2016 9. CIP Reliability Standard Effective Date CIP-005-6 July 1, 2020 CIP-008-6

CIP-003-7 & CIP-003-8 Effective Dates and... · CIP-003-8 R4 Delegate CIP Senior Manager authority 7/1/2016 9. CIP Reliability Standard Effective Date CIP-005-6 July 1, 2020 CIP-008-6

Standard PRC-006-3 4 — Automatic Underfrequency Load Shedding · Standard PRC-006-3 4 — Automatic Underfrequency Load Shedding Page 1 of 40 . A. Introduction. 1. ... generator

Standard PRC-006-3 4 — Automatic Underfrequency Load Shedding · Standard PRC-006-3 4 — Automatic Underfrequency Load Shedding Page 1 of 40 . A. Introduction. 1. ... generator

CIP-010-2 - Cyber Security – Configuration Change ... CIP-010-2_BC.docx · Web viewReliability Standard Audit Worksheet for British Columbia CIP-010-2 – Cyber Security – Configuration

CIP-010-2 - Cyber Security – Configuration Change ... CIP-010-2_BC.docx · Web viewReliability Standard Audit Worksheet for British Columbia CIP-010-2 – Cyber Security – Configuration

Standard Development Timeline 201509 Establish...CIP-014-32 — Physical Security Draft 2 of CIP-014-3 Page 1 of 37 June 2020 Standard Development Timeline This section is maintained

Standard Development Timeline 201509 Establish...CIP-014-32 — Physical Security Draft 2 of CIP-014-3 Page 1 of 37 June 2020 Standard Development Timeline This section is maintained

Low Impact Physical Security CIP v5 Outreach for BC ... · Introduction Mark Lemery, CPP, PSP •Compliance Auditor, Physical and Cyber Security •SME CIP-006, CIP-014 –US Air

Low Impact Physical Security CIP v5 Outreach for BC ... · Introduction Mark Lemery, CPP, PSP •Compliance Auditor, Physical and Cyber Security •SME CIP-006, CIP-014 –US Air

Standard Development Timeline - NERC · CIP-006-6 — Cyber Security — Physical Security of BES Cyber Systems Standard Development Timeline This section is maintained by the drafting

Standard Development Timeline - NERC · CIP-006-6 — Cyber Security — Physical Security of BES Cyber Systems Standard Development Timeline This section is maintained by the drafting

Comment Report - NERC 201602 Modifications to CIP... · Comment Report Project Name: 2016-02 Modifications to CIP Standards | Virtualization Updates for CIP-004, CIP-005, CIP-006,

Comment Report - NERC 201602 Modifications to CIP... · Comment Report Project Name: 2016-02 Modifications to CIP Standards | Virtualization Updates for CIP-004, CIP-005, CIP-006,

Lessons Learned from Commission-Led CIP Reliability Audits · 2020. 5. 12. · CIP-004-3, CIP-005-3, CIP-006-3, CIP-007-3, CIP-008-3, and CIP-009-3. 13. The NERC Glossary defines

Lessons Learned from Commission-Led CIP Reliability Audits · 2020. 5. 12. · CIP-004-3, CIP-005-3, CIP-006-3, CIP-007-3, CIP-008-3, and CIP-009-3. 13. The NERC Glossary defines

CIP-006-5 — Cyber Security — Physical Security of BES - NERC

CIP-006-5 — Cyber Security — Physical Security of BES - NERC

RSAW PRC-006-3-WECC Variance -Automatic ... PRC-006-3-WECC... · Web viewReliability Standard Audit Worksheet PRC-006-3 – Automatic Underfrequency Load Shedding Note: This RSAW

RSAW PRC-006-3-WECC Variance -Automatic ... PRC-006-3-WECC... · Web viewReliability Standard Audit Worksheet PRC-006-3 – Automatic Underfrequency Load Shedding Note: This RSAW