Patch management for control systems

Overview:

This guideline provides suggestions for an effective cyber security patch management strategy for control systems, addresses potential risks that can apply to some electricity sector organizations, and provides practices that can help mitigate the risks.

From North American Electric Reliability Council

THE NORTH American Electric Reliability Council (NERC) has created a compendium of best practices for protecting critical facilities against a spectrum of physical and cyber threats. Security Guidelines for the Electricity Sector addresses topics including vulnerability and risk assessment, business continuity, physical and cyber security, and protecting sensitive information.

The guideline maintains that a well-executed patch management program will help alleviate many of the challenges involved with securing control systems from malicious intrusion while maintaining bulk electric system reliability and high availability. The guideline addresses potential risks that can apply to some electricity sector organizations and provides practices that can help mitigate the risks. Each organization decides the risk it can accept and the practices it deems appropriate to manage its risk.

Click the Download Now button below for a .pdf version of this gudeline.

Author: NERC

Find more white papers on SCADA

View all white papers»