SCADA and Smart Grid
SCADA CIPS Compliance Gap Analysis
Drawing on expertise from regional entity auditors, IOActive offers elite CIPS compliance gap assessments as well as cyber security and energy management network architecture evaluations. IOActive partners with our clients to ensure that success of compliance is achieved as a team. We are diligent about not only understanding current standards versions and auditor strategies, but also the future CIPS standards currently being ratified. We are committed to providing our clients with forward-looking strategies that help them "stay ahead of the curve" in terms of compliance.
Because failure to comply with standards can result in expensive fines, depending on the violation security level, IOActive performs gap assessments to CIPS compliance for utilities that are part of the bulk electrical system—utilities that are generation or transmission carriers of critical power resources. Our customers leverage our expertise and gap assessment to help ensure they have all of the policies, procedures, and computer controls in place for CIPS compliance.
CIPS is not a check-box effort for every utility; the standards are generalized and can be interpreted in many ways. In many cases, our customers look to us for guidance on compliance measures that are cost effective and—more importantly—enable their power engineers and operators to manage daily efforts efficiently within a larger context. Our goal with performing gap assessments is to fully prepare our client for a complete CIPS compliance audit, and to arm them with the knowledge and tools necessary to maintain the integrity of their cyber security.
In addition, IOActive consultants have extensive expertise in and the skill sets to conduct vulnerability assessment on Critical Cyber Assets (CCAs) and Electronic Access Devices (EADs). Drawing on our experience, we provide accurate assessments while ensuring that reliability and availability of cyber assets is maintained.
