White Papers
Cybersecurity for Electric Utility Operating Environments
Read More
Energy & Utilities Cybersecurity
Protect critical infrastructure from attacks.
Is NERC-CIP compliance sufficient?
Electric utility cybersecurity strategies that were good enough five years ago might not be good enough today. In response to public demands for distributed energy production, grid control systems are being connected to third party systems; this introduces new exposures, including vulnerabilities in the supply chain. At the same time, vulnerabilities exist in many utility-owned devices such as voltage regulators, smart switches, capacitors, RTUs, human-machine interface (HMI) systems and SCADA software.
Do you have enough visibility to attacks coming from your supply chain and other third party sources? What is your level of cybersecurity maturity as measured by the NERC-CSF framework?
Granular understanding of attack surfaces.
Prioritize your efforts to protect the most vulnerable areas. Armis is a secure, cloud-based security platform that discovers and identifies all connected devices on your network and in your airspace. You will not only identify each device, but also know whether any device has vulnerabilities that you should know about. You will have:
- A real-time inventory of all devices
- Risk Assessments across twelve different attributes
- A view of unauthorized network connections (policy violations)
- Visibility into both critical and non-critical cyber assets including BES Cyber Assets, Electronic Access Control or Monitoring Systems (EACMS) and Physical Access Control Systems (PACS).
Detect & repel attacks.
Continuously monitor all connections in your environment—wired, Wi-Fi, BLE—and get alert when connections violate your security policy or have anomalous behavior that is indicative of an attack—even if the attack is coming through your supply chain. You will be able to:
- Continuously, passively monitor device behavior
- Detect behavioral anomalies and compromised devices
- Stop cyber attacks from progressing
- Have comprehensive coverage of the attack techniques listed in the new MITRE ATT&CK™ for ICS
Comply with NERC-CIP standards and NISTIR 8228.
The Armis Platform includes a broad range of security functions that help you comply with five of the NERC-CIP utility cybersecurity standards and all four of the risk mitigation areas listed in Goal 1 of the NISTIR 8228 cyber security framework. NISTIR 8228 is a relatively new framework that is especially relevant for OT devices within utility environments. NISTIR 8228 is broader in scope than the NERC-CIP standards. It recognizes the importance of securing all IoT devices in your environment—both BES Critical Assets and other devices in your environment and your airspace that may be used as part of a cyber attack kill chain.
Deploy quickly & manage simply.
The Armis Platform is cloud-based, which makes it easy and quick to deploy. There are no agents, no hardware sensors to install. Armis requires no changes to your existing infrastructure. The Armis threat detection engine includes built-in expert knowledge so your staff doesn’t need to become experts in IoT security.
Although The Armis Platform is cloud-based, it has been designed to meet the highest security standards including NIST SP 800-53, ISO 27001, SOC 2 Type II, and Privacy Shield. The Armis Platform has passed the security tests of many Fortune 100 enterprises as well as government agencies.
