NERC

The North America Electric Reliability Council (NERC) has created Critical Infrastructure Protection standards, used help ensure the reliability of bulk electric systems. The NERC CIP standards, CIP-002-1 through CIP-009-1, refer to log and audit data in many places. Perhaps most specifically in CIP-007 R6, where it requires reports and alerts for security status monitoring. CIP005 R3 also requirements monitoring of electronic access and logging access to access points. In addition, log data can evidence that many other NERC standard requirements have been properly implemented such as CIP003 R6 on change and configuration management, CIP007 R2 and R4 on ports and services and malicious software and CIP007 R5 on identity and account management.

The benefits of LogLogic’s solutions for NERC:

• The LogLogic Open Log Management platform builds the foundation to provide infrastructure-wide activity and security monitoring, including foundation for smart meters.
• LogLogic Compliance Suite: NERC Edition makes preparing reports for an audit trouble-free.
• LogLogic Security Event Manager can help prioritize the daily stream of attacks and automate incident management follow-up.
• LogLogic Database Security Manager adds specialized monitoring for your databases, including real-time blocking of suspicious activities

While LogLogic can provide you with the tools to enable you to achieve compliance, LogLogic cannot determine if you have met your compliance objectives. For any such determinations, you are advised to consult with a qualified advisor.