Ensuring Compliance with NERC Standards

In the Reports Portal, select Repository > Standard Content > NERC.

The North American Electric Reliability Corporation (NERC) Critical Infrastructure Protection sets the standards for monitoring, detecting, and responding to various cyberattacks and threats to the electric power industry to ensure the reliability and security of the bulk power industry. Owners, operators, and users of bulk power systems in the United States and Canada must comply with NERC standards.

To help you comply or prove compliance with NERC, we provide the Compliance Insight Pack for NERC. For more information about adding the pack to the Reports repository, see the Solutions Guide for ArcSight Compliance Pack for NERC. The guide includes information about identifying assets that must comply with NERC.

Note: Certain dashboards in this package require ArcSight ESM and ArcSight ESM Unified NERC CIP to populate.

This package includes the following dashboards, organized by NERC controls:

Category	Dashboards
CIP Overview– Executive Summary	NERC Compliance Overview NERC Insights Real-Time Alerts by CIP ID
CIP-002-6 Cyber Security: BES Cyber System Categorization	New Devices
CIP-005-7 Cyber Security: Electronic Security Perimeter(s)	Traffic Anomaly
CIP-007-6 Cyber Security: System Security Management	Login Activity Overview Malware Overview User Activity Overview Users and Accounts Overview
CIP-008-6 Cyber Security: Incident Reporting and Response Planning	Attack and Suspicious Activity Overview Command and Control Overview Lateral Movement Overview Privilege Escalation Overview MITRE ATT&CK ICS Overview
CIP-010-4 Cyber Security: Configuration Change Management and Vulnerability Assessments	Configuration Changes Overview Vulnerability Overview