Cybersecurity

NERC CIP Compliance Services

SEL helps electric utilities meet NERC CIP cybersecurity standards and streamline the ongoing process of staying in compliance. 

The NERC CIP standards set critical infrastructure protection requirements for utility providers that are considered part of the bulk electrical system (BES) in the US, Canada, and part of Mexico. In addition to helping utility providers meet these standards, we can also test, design, and implement complete operational technology (OT) networking solutions and electric power protection and control solutions that comply with any cybersecurity standards that may apply to you.

Managing NERC CIP Compliance

SEL provides services and solutions that streamline the demanding, potentially time-consuming tasks of maintaining compliance with NERC CIP cybersecurity standards and keeping your critical electric power infrastructure secure.

And if NERC CIP standards don’t yet apply to you, but might in the future, we can help ensure that future compliance is easier to achieve.

Remote Access Configuration and IED Password Management

 SEL provides the design, setup, and implementation of secure engineering access using the SEL Real-time Automation Controller (RTAC), OPNsense on SEL hardware, and SEL-3620 Ethernet Security Gateway with centralized RBAC services.

See SEL Products for Secure Access Control

As part of this service, SEL experts will:

  • Integrate SEL devices with your directory services and group policy objects.
  • Set up remote centralized access with LDAP and/or RADIUS.
  • Configure localized IED checkout to support secondary injection test set software.
  • Enable substation engineering access for islanded communications situations (for instance, with local backup accounts).
  • Document the functional design, factory acceptance test plan, and site acceptance test plans.
  • Set up security logging and alerts.

Centralized Enterprise Management Integration

We provide centralized enterprise management integration for SEL secure networking and access control solutions, including plans for restoring settings and systems in case of a catastrophic cyber event.

This service includes:

  • Integration with Domain Name Services (DNS)
  • Configuration of a VPN client
  • Jumpserver or intermediary system deployment
  • Computer hardening with NIST STIG or CIS benchmarks
  • Multifactor authentication with RADIUS.
  • Settings baseline and the creation of a backup plan
  • Software tools and network storage
  • Certificate management configuration and integration
  • Integration with Syslog and (if available) SNMP services

NERC CIP Process Documentation

SEL experts will review and draft updates to your process documentation to ensure alignment with NERC operational requirements.

We will also set up the collection of data from protection system IEDs to document compliance with all applicable NERC CIP standards.

NERC CIP-004

  • Access management process and access revocation process

NERC CIP-005

  • Electronic security perimeter

NERC CIP-007

  • Substation system security management: engineering access ports and services
  • Firmware patch management for SEL devices
  • Engineering access security event monitoring and Syslog
  • Substation access controls

NERC CIP-009

  • Backup and recovery plan for protection system IEDs
  • Disaster recovery process

NERC CIP-010

  • Baseline configuration and change management for protection system IEDs

NERC CIP-011

  • IED decommissioning

System-Specific Training

SEL cybersecurity professionals provide training courses that cover:

  • Electronic security perimeter awareness.
  • Electronic access point awareness.
  • Product overviews of the SEL RTAC, OPNsense on SEL hardware, and SEL-3620 with access to product resource material.
  • Configuration of the SEL RTAC, OPNsense on SEL hardware, and SEL-3620.
  • NERC CIP process modifications and improvements

These courses meet NERC CIP requirements for security awareness program training (CIP-004) and security operations training with a table-top exercise (CIP-008).

Firmware and Software Patch Management

Our product application engineers and cybersecurity experts ensure that your SEL products are always up to date and functioning properly with:

  • Twice-monthly assessments of how any new updates might impact or improve your specific application of the SEL product.
  • NERC CIP documentation and deployment plans as indicated by the assessment.
  • A lab test bed that replicates your site and allows thorough testing of new firmware and software prior to site deployment.
  • Deployment and system baseline updates.

Supply Chain Risk Management

The NERC CIP-013 standard requires mitigation of supply chain risks to help ensure the cybersecurity of the bulk electrical system.

As part of your supply chain, SEL is ready to provide the vendor notification, disclosure, and assessment information you need to meet these risk management requirements.

Our cybersecurity and operations professionals can also help you implement some of the risk management best practices we use to ensure the security of our own supply chain.

Questions? Contact Us!

If you have any questions about SEL products, services, solutions, or support, please contact us. Our service and support professionals are ready to provide the answers you need.

Unbeatable Support

SEL support teams are stationed in regional offices around the world and staffed with application engineers who are experts in our products and in power system applications.

Technical support for SEL-manufactured devices is always free. No matter how often you need to call or how long your SEL products have been in service, you’ll reach an SEL expert who can provide the service and support you need.

Our cybersecurity team is always ready with the information and resources needed to keep your OT networks and critical systems secure and working effectively. Cyber services support contracts can include incident response, audits, system hardening, and more, depending on your anticipated needs.

More about SEL warranty and support