What Specific NERC CIP Standards Does The Verve Security Center Apply To?

Verve recently developed a new brochure to highlight what specific NERC CIP version 5 standards the Verve Security Center applies to. The Verve Security Center is a centralized security suite that consolidates multiple best of breed technologies into a unified management console.  We understand the unique differences between traditional IT environments and industrial control systems (ICS) because of our extensive ICS background. For the past 22 years, Verve and its predecessor, Rkneal,  have been focusing on turnkey DCS, PLC and SCADA upgrades within the utilities industry. In fact, the power industry represents 90% of our business.

Verve helps automate many of the requirements associated with CIP 005, 007, 009 and 010. It also provides several layers of evidence gathering. For more information, please download our NERC CIP Mapping brochure.

DHS Report, Application Whitelisting And Patching Play A Crucial Role

Application whitelisting and patch management are just two of the technologies integrated into the Verve Security Center

According to a recent United States Department of Homeland Security (DHS) report, application whitelisting and proper patch management mitigate 67 percent of “common exploitable weaknesses in “as-built” control systems.” The December 2015 report, “Seven Strategies to Defend Industrial Control Systems” highlights the rise in cyber attacks targeting U.S. critical infrastructure.

Of the 295 incidents reported to the Industrial Control Systems Cyber Emergency Response Team (ICS-CERT) last year, the reports cites 98 percent would have been prevented if system owners would have implemented their recommended strategies. As a result, the report details its top seven strategies to protect industrial control systems (ICS) from today’s modern attacks.

“This is the beauty behind the Verve Security Center,” said Adam Brewer, Director of Business Development. “Verve deploys a true defense in depth strategy. In addition to application whitelisting and patching, Verve consolidates antivirus, change management, security information & event management (SIEM), vulnerability assessments, intrusion detection and backup management technologies into a unified management console.”

Since 2009, Rkneal has deployed the Verve Security Center at multiple power plants and substations.