CIP-007: Cyber Security Requirements (Update:v5 Rev.3 09/11/12)
- R1. Ports and Services - Each Responsible Entity shall implement, in a manner that identifies, assesses, and corrects deficiencies, one or more documented processes that collectively include each of the applicable requirement parts in CIP-007-5 R1. (Maps to Prior Requirement R2)
- R2. Security Patch Management - Each Responsible Entity shall implement, in a manner that identifies, assesses, and corrects deficiencies, one or more documented processes that collectively include each of the applicable requirement parts in CIP-007-5 R2. (Maps to Prior Requirement R3)
- R3. Malicious Software Prevention - Each Responsible Entity shall implement, in a manner that identifies, assesses, and corrects deficiencies, one or more documented processes that collectively include each of the applicable requirement parts in CIP-007-5 R3. (Maps to Prior Requirement 4)
- R4. Security Event Monitoring - Each Responsible Entity shall implement, in a manner that identifies, assesses, and corrects deficiencies, one or more documented processes that collectively include each of the applicable requirement parts in CIP-007-5 R4. (Maps to Prior Requirement R6)
- R5. System Access Controls - Each Responsible Entity shall implement, in a manner that identifies, assesses, and corrects deficiencies, one or more documented processes that collectively include each of the applicable requirement parts in CIP-007-5 R5. (Maps to Prior Requirement R5)
Copyright © Cloud Software Group, Inc. All rights reserved.