As part of the nation's critical infrastructure, energy companies continue to be compelling targets for hackers seeking to steal data and disrupt operations. Consequently, electrical utility companies must ensure that they protect their networks and systems from growing threats and cyberattacks – and that includes complying with the standards of the North American Electric Reliability Corporation (NERC) Critical Infrastructure Protection. These requirements are designed to protect the security of cyber assets vital to the operation of North America’s power grid.
The Tenable vulnerability, threat and compliance management platform helps utilities ensure the safety and security of critical infrastructure by continuously monitoring the compliance and security of their enterprise and SCADA networks.
How Tenable Can Help
Nessus® supports electrical utilities by:
- Auditing operating systems, routers and applications environments subject to NERC CIP for vulnerabilities
- Performing specific vulnerability checks on control systems such as Telvent, Siemens, ABB Ranger, Schneider Electric and more
- Performing configuration audits of operating system and applications specifically used in control systems, such as OSIsoft PI, ABB Ranger and Siemens
SecurityCenter Continuous View's Log Correlation Engine® (LCE®) gathers netflow, system logs, employee logins, intrusion detection events, file integrity information, and more across enterprise networks and control system devices for aggregation, forensics, analysis and correlation.
Many utilities utilize Tenable Nessus Network Monitor (formerly Passive Vulnerability Scanner® or PVS™) to observe any IP-based control system network to monitor changes and trust relationships, discover assets and assess vulnerabilities without affecting network performance.
Digital Bond's Bandolier Project
With Nessus, utilities have access to Digital Bond's Bandolier project, which has produced audit policies for both Nessus and SecurityCenter Continuous View to test the configurations of many different types of Unix and Windows control system software.