Intellitactics’ SAFE LP Automates Monitoring of NERC Information Security Standards

Intellitactics offers everyday NERC compliance on SAFE appliance

Note: ESJ’s editors carefully choose vendor-issued press releases about new or upgraded products and services. We have edited and/or condensed this release to highlight key features but make no claims as to the accuracy of the this vendor's statements.

Intellitactics, a security information and event management (SIEM) solutions provider, has released Intellitactics SAFE LP to help enterprise comply with NERC CIP standards. Intellitactics SAFE (SAFE) automates tasks for regulatory standards compliance: log collection, storage, compliance reports, and event detection to mitigate risk. In addition to audit-worthy reports, SAFE’s event explorer provides instant access to logs and events to improve understanding and accelerate investigation of control violations most likely to put critical infrastructure at risk. SAFE is an energy-efficient appliance, capable of organizing logs and notifying operators and security analysts of control violations or anomalies that put the enterprise at risk.

Sunil Bhargava, CTO of Intellitactics explains the benefits of SAFE: “The NERC CIP standards such as PCI, HIPAA, SOX, and others, provide a guidance for strengthening security and protecting mission-critical infrastructures. In fact, bulk electric entities must be in compliance with these standards by the end of June 2009. Intellitactics’ utility customers use the SAFE LP appliance as a foundation for complying with information security related standards for all their compliance initiatives -- not just NERC.

“Without spending more, they’re able to use SAFE’s reports and event-monitoring capability to automate the daily tasks required to be secure and compliant every day. NERC-focused reports are easily accessed from the navigation tree, along with PCI, SOX, and other compliance-related reports.”

Pam Casale, Chief Marketing Officer Intellitactics describes a pragmatic approach to NERC compliance: “Recent headlines reflect the criminal efforts of cyber spies who are allegedly targeting utilities and threatening the availability of the national power grid. NERC provides guidance in many areas, and the SAFE appliances provide a centerpiece to the overall information security plan. SAFE provides scalable, world-class event monitoring and correlation used to proactively stop these threats and protect this critical information infrastructure.”

The primary objective for NERC standards is to ensure the reliability of the bulk power system in North America. These standards include critical cyber-asset identification, security management controls, personnel and training, electronic security perimeters, physical security of critical cyber assets, systems security management, incident reporting and response planning, and recovery plans for critical cyber-assets.

Non-compliance with NERC standards can result in fines as high as $1 million per day per violation based on incident severity and a number of risk factors. Many leading utilities are using Intellitactics to secure their power generation and transmission infrastructure against growing global cyber threats.

Intellitactics SAFE automates the tasks compliance with industry and regulatory standards as well as internal policies. SAFE verifies and validates that controls put in place to enforce policies are working. SAFE automates the everyday compliance tasks such as log acquisition, review, analysis, notification, and reporting.

SAFE transforms ambiguous logs into easy-to-understand security events. All the data is normalized, meaning that unlike logs can be combined for reporting, dashboards and charts. Intellitactics has tailored SAFE to offer a fully capable data security management solution on one right-sized SAFE appliance.

More information is available at