The topic of cyber security is getting a lot of attention at electric utilities recently, as they deal with NERC-CIP standards and the ever-present threat of cyber security attacks. Top of mind are several incidents of cyber attacks, the most well known being the Stuxnet worm that attacked industrial software and equipment and some other attacks like the ones targeting Lockheed Martin and Sony.
Cyber security teams are very familiar with SIEM (Security Information and Event Management) products and solutions. These solutions were created to help cyber security departments address these very types of situations by securing modern IT environments. SIEM provides two main functions: Security Information Management (SIM) which includes log management and reporting and Security Event Management (SEM) which facilitates real-time monitoring and incident handling.
But the NERC-CIP regulations necessitate electric utilities to focus on both cyber and physical security to protect the bulk electric system from threats that could effect its reliable operation. And that’s where PSIM (Physical Security Information Management) comes in. PSIM brings the same type of advanced capabilities (that are available to cyber security teams through SIEM) to physical security operations centers in electric utilities. For example, PSIM enables the integration of multiple physical security information systems and technologies (CCTV, access control, building management, fire and safety, perimeter intrusion sensors and more) to allow a unified and correlated real-time view of security incidents.It also helps utilities comply with certain aspects of NERC CIP standards and provides reporting information for rigorous CIP audits, among many other benefits.
In essence, PSIM can work hand in hand with SIEM help your utility meet the challenges of NERC CIP compliance.
Want to learn more? Please feel free to email me atYariv.Lenchner@nice.com.