Key findings include:
- 70 percent believe they have a clear understanding of all the current NERC CIP requirements. - 77 percent believe NERC CIP compliance is necessary to ensure the cybersecurity of the Bulk Electric System. - 70 percent, however, do not believe that NERC CIP compliance is sufficient to ensure the cybersecurity of the Bulk Electric System. “It is encouraging that a majority of respondents acknowledge the value of NERC CIP compliance and the key role it plays in energy cybersecurity,” said Jeff Simon, director of service solutions for Tripwire. “Most respondents also acknowledge that NERC CIP compliance alone is not sufficient to ensure cybersecurity – they know compliance is just the start of an effective cybersecurity strategy.”
Tripwire has helped more than 140 registered entities achieve and maintain NERC CIP compliance since 2008, and continues to invest in tools and processes that automate and simplify NERC CIP compliance.