SecurityMatters is now part of Forescout
SecurityMatters is now part of 
Forescout

Stay up to date, subscribe to our blog.

It’s a Wrap! Securing Critical Assets in a Converged IT/OT World Finishes in Style

by Tiziana Fazio

A few days ago, in Amsterdam, The Netherlands, the Forescout team hosted information technology (IT) and operational technology (OT) cybersecurity professionals at an exclusive event dedicated to empowering critical infrastructure organizations to secure their assets in a converged IT/OT world. This dynamic event brought together top cybersecurity teams from the Benelux region.

NERC CIP-005-5: Complying with the Electronic Security Perimeter Requirements

by Brandon Workentin

A key driver of the NERC CIP regulations is to ensure that computer system networks that are vital to the operation of the Bulk Electric System (BES) have a sufficient level of protection, commensurate to their importance to a functioning society. One of the main ways the NERC CIP regulations do this is through mandating that organizations focus on the perimeter defenses of their computer networks. This is important enough to the NERC CIP standards that CIP-005-5 itself is titled, and focused exclusively on, “Electronic Security Perimeters.”[1]

SilentDefense Wins 2019 Engineers’ Choice Award for OT/ICS Cybersecurity

by Erin Anderson

The 32nd annual Control Engineering Engineers’ Choice Awards shines a light on industry leaders in control, instrumentation, and automation products and highlights engineers’ favorites, as chosen by the Control Engineering print and digital audience. A total of 102 finalists from across 26 categories were listed on the ballot this year, and automation professionals from Control Engineering’s subscriber lists voted for the products that they felt were the most exceptional based on technological advancement, service to the industry, and market impact. We’re proud to announce that Forescout’s network monitoring and situational awareness solution, SilentDefense, has won the 2019 Engineers’ Choice Award in the Industrial Cybersecurity category.

Largest NERC CIP Fine to Date: What You Need to Know

by Brandon Workentin

The North American Electric Reliability Corporation (NERC) announced the largest public NERC CIP fine ever given, with a $10 million fine levied in response to 127 separate violations across an organization. As is normal, NERC did not identify the organization involved, although the language in the Notice of Penalty (NOP) makes it clear that the single organization represents multiple individual companies across various NERC regions. The violations encompass each of the CIP standards, but almost all of the violations were self-reported by the entity, with only 13 of them being discovered during Compliance Audits. The self-reports were submitted beginning in 2015 and continuing through 2018. Some of the penalties were related to not identifying assets which should have been subject to the CIP standards. For example, there were violations for not identifying and categorizing assets correctly, and then also violations for not including those assets in Disaster Recovery Plans or baseline configurations.

Join the conversation