• Home
  • About Us
  • We Are Different
  • Significant Client Project
  • Training
  • Knowledge
  • Recent FERC & NERC Developments
  • Contact

Are You Ready For Your NERC CIP SPOT CHECK AUDIT? Contact Us Immediately @ 248.981.5248 To Prepare Today!

  • Latest News

  • Insights & Ideas

      Catalyst For Change?
      FERC Demands "Culture of Compliance"

  • Client Login

      Email:
      Password:
      Forgot your password?
      powered by sharefile

  • Services

      CIP Compliance Program Assessment & Implementation
      Risk Based Assessments & Cyber Asset Identification
      Threat & Vulnerability Assessments
      Remediation Solution Design & Implementation
      Compliance Management
      CIP Training & Awareness
      Internal Audit Assistance & Teaming
      Audit Documentation Repository Solutions
      Resource Staffing & Teaming
      Violation Settlement & Legal Counsel Support
      Service

Threat & Vulnerability Assessment Services - Designing Your Comprehensive Non-Invasive Risk Management Process to “Maximize Operational Reliability and Availability”

Challenge:  Are you confident that your Threat and Vulnerability Management Process is protecting the Bulk Electric Systems’ Critical Cyber Assets?

CAUTION  Because of the potential for disruption to control system devices and essential IT infrastructure operations, vulnerability scanners should be used with caution on production Industry Control System networks.  Complyant Solutions’ cyber security specialists are highly experienced in performing threat and vulnerability assessments.  Our security professionals understand the risks of performing incorrect actions.   Our unparalleled audit and information security control expertise and in-depth knowledge of threat and vulnerabilities and emerging technologies - makes Complyant Soutions the first choice of leading companies.

How do you know whether your Risk Management Process is addressing all the risks?  The use of the open Internet and new vulnerable technologies within industry control systems has driven the need for strong information security solutions and techniques.  Any access to cyber assets is a challenge to an organization concerned about liability, security, and regulatory compliance.  Insecure and unreliable industrial control system networks are a threat to your critical cyber assets, operational reliability of devices, can cause reduced earnings and financial impacts to revenue streams, a loss of confidence for your customers, significant financial penalty and sanctions, and ultimately - impact the reliability of the Nation’s Bulk Electric System.   Are you certain that you do not have access links (such as dial-up modems to equipment and control information) open for remote diagnostics, maintenance, and examination of system status?  Do you allow third party vendors to remotely maintain your critical systems?  Do you have control systems attached to vulnerable wireless communication systems?  How often do you update your training and awareness programs to ensure that they remain current with new vulnerabilities?  Are passwords to critical systems easy to guess, shared, or using the default passwords that were provided “out of the box”, or even installed with no passwords at all?  Are you certain that access to/from the Internet are approved connections and implemented with securely configured firewalls?  These are just a sampling of threats and vulnerabilities to mention….. Without adequate cyber security controls in place, a cyber security breach could significantly damage your business and cause a cascading effect to the Bulk Electric System.  How can you be sure your cyber security controls are effective?

Solution:  Threat & Vulnerability Risk Management Services from Complyant Solutions.

WE ARE EXPERIENCED PROFESSIONALS YOU CAN TRUST

The  Complyant Solutions’ Threat & Vulnerability Assessment will help identify any weaknesses that may be present in the systems that could allow the confidentiality, integrity, or availability of systems and data to be adversely affected, along with the related cyber security risks.  Our Cyber Security Services Team will assist you with designing and implementing sustainable cost effective and efficient mitigation approaches to reduce the risks.

The core element of our Threat & Vulnerability Management methodology is to take a “Defense in Depth” approach to cyber security.  Securing SCADA (Supervisory Control and Data Acquisition) systems or DCS (Distributed Control System) environments requires knowledgeable security professionals who have significant real-time process control/SCADA and cyber security experience.  Our Cyber Security Services strategy has an appreciation for the various security layers that play a role in securing mission-critical real-time control systems.  Each layer of defense represents categories of system components that must all be secured and hardened to the highest level so that each system can compensate for inherent deficiencies in the layers below it.  Our services can:

  • Design and document your threat and vulnerability methodology and management processes
  • Review controls over access points to your electronic security perimeter(s) and the various layers of security controls to ensure that they are secure and optimally configured
  • Identify known threats and vulnerabilities
  • Design and implement automated tools and processes to assist you with sustaining a cost effective and efficient “real-time” solution
  • Support your security team with detailed reports, explain the weaknesses, and provide an implementation “checklist” to assist in establishing mitigating strategies
  • Provide specialized experienced security professionals to perform your threat and vulnerability management processes and procedures
  • Provide knowledgeable and experienced security professionals to implement your security and defense mechanisms and harden your environment for optimal configuration
  • Successfully meet the requirements of a security audit by ensuring compliance with policies and standards

WE ARE EXPERIENCED PROFESSIONALS  YOU CAN TRUST

Complyant Solutions is the industry leader in control system information security.  Our unparalleled audit and control expertise and in-depth knowledge of emerging technologies and regulatory compliance have made us the first choice of leading companies.  Protect your Critical Cyber Assets and vital business information.  Compete with Control.  Confidence.  Compliance.  Call on experience you can trust:  The Cyber Security Services team at Complyant Solutions.

DON’T WAIT – CONTACT COMPLYANT SOLUTIONS TODAY TO ASSIST YOU WITH  TAKING AN IN DEPTH LOOK AT YOUR RISK MANAGEMENT PROCESS AND IDENTIFYING THREATS AND VULNERABILITIES BEFORE THEY IMPACT OPERATIONAL RELIABILITY AND AVAILABILTY, CALL COMPLYANT SOLUTIONS AT  248.981.5248. 



Disclaimer

© 2010 All Rights Reserved

Complyant Solutions' Cyber Security Practice is an integrated team of cyber security consultants, information and control systems technology specialists, and legal counsel professionals who focus on the unique needs of responsible entities to protect the reliability of the Bulk-Electric System. Within the Cyber Security Practice, our professionals deliver consulting services, technology solutions, and IT operations with energy industry expertise to manage compliance, audits, and enforcement actions with the National Electric Reliability Corporation (NERC) Critical Infrastructure Protection reliability requirements and reduce the risks to the Bulk-Electric System.

Admin