CIP 101

Overview:

VigiTrust's on-line training course CIP101 enables power utilities to be complaint with the training requirements of NERC CIP. To see a brief demo video, go to: CIP101 Video

NERC

The North American Electric Reliability Corporation (NERC), which is designated with the responsibility to promote the reliability and adequacy of bulk power transmission in the electric utility systems of North America. To achieve its aim the NERC developed and enforces various industry standards, including CIP-002 through CIP-009.

NERC CIP-002 through CIP-009

Compliance for CIP-002 –CIP-009 has been required since July 1st 2009, and utilities must be audit ready by July 2010. Non-compliance can result in fines of up to $1m per day per violation.

Standard CIP-004 requires personnel, including contractors and service vendors, who have either cyber or physical access to Critical Cyber Assets, to have an appropriate level of risk assessment, training and security awareness. In addition it states that security awareness should be re-enforced on a quarterly basis. For further details see CIP-004.

The challenge for power utilities is to come up with an effective training regime to meet CIP-004's requirement. VigiTrust can empower organizations to address this challenge in an effective and cost efficient way using their on-line training course: CIP 101.

The CIP 101 on-line course has been built on VigiTrust's flagship security training platform e-SEC. VigiTrust have extensive experience in training organizations on security and compliance related matters such as PCI DSS, ISO27001, HIPAA, SoX etc.

CIP 101 from VigiTrust addresses the challenge.

VigiTrust's CIP 101 course has been developed to be:

  • Auditable: Auditors have full access to the curriculum and to the details of who has completed the training.
  • Cost effective: With VigiTrust's on-line CIP 101 training, there is no need for costly trainers to visit sites and the training can be taken at the employee's convenience, thus minimize disruption to work.
  • Examinable: All users must complete an interactive exam at the end of the training.
  • Certifiable: Successful users are issued with certificates, showing that they have completed and been examined on CIP training.
  • Scalable: CIP 101 can be easily deployed across large and diverse organizations.
  • Manageable: With powerful admin and reporting functionality, VigiTrust's CIP 101 minimizes the effort of managing large numbers of users.
  • Available 24*7: Users can register to take courses to suit their own schedule

Course Description:

  • What is Critical Infrastructure
  • Cyber-terrorism overview
  • Cyber-terrorism overview & Critical Infrastructure
  • The threat to Supervisory Control and Data Acquisition (SCADA)
  • The role of the North American Electric Reliability Council

For more information:

MCP

MCP from VigiTrust

Manage your merchants' portfolio PCI DSS compliance.

Learn more

eSEC

eSEC from VigiTrust

Security & Compliance on-demand education.

Learn more

SAMS

SAMS from VigiTrust

Cost-effectively enable your PCI DSS accreditation process.

Learn more
Copyright ©2012, VigiTrust Ltd.