audit benefits of a ‘closed-loop control integration’ between nerc cip vendors
TRANSCRIPT
CONFIDENTIAL © 2015 SigmaFlow All rights reserved.
SigmaFlowCompliance
Manager
Process-Driven Compliance:Closed-Loop Control Integration
CONFIDENTIAL © 2015 SigmaFlow All rights reserved.
Enforce Prerequisites
Assign WorkIdentify, Assess, and
Correct
Good:Enforce Policies
Gather Approvals
Validate against as is
Generate/ Associate Evidence
Better:+ Compliance Validation
Best Practice:Audit Ready
AUDIT READY
CLOSED-LOOP CONTROLS
CONFIDENTIAL © 2015 SigmaFlow All rights reserved.
PRA?Training?
Request Check Approve Perform Validate Assess Correct Generate Associate
Exception List
QuarterlyYearlyChange log
By CIP Requirement
Evidence: Access Rights Procedure
Evidence: Access Rights Tickets
Evidence: Access Rights Workflow History
Evidence: Approved Access Rights by Person
Evidence: Provisioned Access Rights by Person
Evidence: Validation that Approved matches Provisioned
Evidence Stack
Request Access Rights Baselines
Return Access Rights Data
Automatically Generate Approved Accounts Whitelist
US
E CA SE
– AC CE SS
RI GH
TS
CONFIDENTIAL © 2015 SigmaFlow All rights reserved.
Request Test Asset Approve Perform Validate Assess Correct Generate Associate
Exception List
QuarterlyYearlyChange log
By CIP Requirement
Evidence: Change Request Procedure
Evidence: Change Request Tickets
Evidence: Change Request Workflow History
Evidence: Security Controls Testing Reports
Evidence: Validation Against Baseline Reports
Evidence Stack
Receive Security Controls Report
Request Current
Baselines
Receive Current Baseline Data
Pre-ChangeRequest Security
Controls
Post-ChangeRequest Security
Controls
Receive Security Controls Report
One Ticket, many Assets (i.e. Patches)
US
E CA SE
– CH AN GE
RE QU
ES TS
CONFIDENTIAL © 2015 SigmaFlow All rights reserved.
BASELINE MANAGEMENT
Enforces Logical Baseline Mgt.• Software Versions
• OS, Firmware, Commercial, Open Source, Custom
• Approved Patches• Approved Ports/Services
Built-in Closed Loop Controls• Software Versions
• Patches• Ports/Services
• Local Accounts• Baseline Evidence• Validate against Actual
CONFIDENTIAL © 2015 SigmaFlow All rights reserved.
BASELINE MANAGEMENT
Approved Baselines include:• Software Versions
• OS, Firmware, Commercial, Open Source, Custom
• Approved Patches• Approved Ports/Services• Access Rights
Provisioned Baselines include:• Software Versions
• OS, Firmware, Commercial, Open Source, Custom
• Approved Patches• Approved Ports/Services• Access Rights
Compliance Evidence Includes:• Approved Baselines• Provisioned Baselines• Approved-Provisioned Validation
Approved-Provisioned Validation:• Auto-Acknowledge Rules• Transactional History• Change Log• Issues/Exceptions
Schedule By:• Daily• Weekly
CONFIDENTIAL © 2015 SigmaFlow All rights reserved.
LIVE DEMO
CONFIDENTIAL © 2015 SigmaFlow All rights reserved.
Experience the SigmaFlow Difference
Questions?
Thank you.