CIP-006: Cyber Security Measures
The following measures will be used to demonstrate compliance with the requirements of Standard CIP-006:
- M1. The Responsible Entity shall make available the physical security plan as specified in Requirement R1 and documentation of the implementation, review and updating of the plan.
- M2. The Responsible Entity shall make available documentation that the physical access control systems are protected as specified in Requirement R2.
- M3. The Responsible Entity shall make available documentation that the electronic access control systems are located within an identified Physical Security Perimeter as specified in Requirement R3.
- M4. The Responsible Entity shall make available documentation identifying the methods for controlling physical access to each access point of a Physical Security Perimeter as specified in Requirement R4.
- M5. The Responsible Entity shall make available documentation identifying the methods for monitoring physical access as specified in Requirement R5.
- M6. The Responsible Entity shall make available documentation identifying the methods for logging physical access as specified in Requirement R6.
- M7. The Responsible Entity shall make available documentation to show retention of access logs as specified in Requirement R7.
- M8. The Responsible Entity shall make available documentation to show its implementation of a physical security system maintenance and testing program as specified in Requirement R8.
Copyright © Cloud Software Group, Inc. All rights reserved.