NERC

Achieve NERC CIP compliance, in particular Section 007 R5 Account Management and 005 R2 and R3.

CyberArk's Privileged Identity and Session Management suites help energy utilities meet NERC CIP compliance, in particular Section 007 R5 Account Management and 005 R2 and R3. Moreover, specific vulnerabilities that were found in remote access mechanisms led NERC to publish an Industry Advisory and guidance on securing remote interactive access to critical systems, specifically addressed by CyberArk’s Privileged Session Management which securely isolates, controls and monitors remote session access.
 
With CyberArk, electric utilities can put the controls in place for the best privileged account management to centrally secure, manage and monitor privileged accounts and remote interactive sessions. 
 
Key Benefits:
  • Accountability for every use of privileged or shared accounts. 
  • Secure privileged credentials and sessions in a tamper-proof and patented Digital Vault. 
  • Centrally enforce policies and access workflows which are flexible enough to meet diverse business processes. 
  • Audit and track every privileged account and activity with built-in or customized reports. 
  • Isolate privileged sessions from targeted and sophisticated attacks without exposing the privileged credential. 
  • Monitor every privileged session for context-based playback. 
  • Secure remote access for external contractors with "over the shoulder" real-time session monitoring.