|
The following are some of the major services that we provide to energy companies regarding Cyber Security:
- Development and maintenance of cyber security policy based on NERC CIP and Sarbanes Oxley standards. UDS Group provides services in developing Cyber Security Policy for all required areas including:
- Security Environment, identification of Critical Assets & Critical Cyber Assets
- Roles & Responsibilities for Critical Assets & Critical Cyber Assets, and Exceptions
- Identification, Classification, & Protection of Information on Critical Cyber Assets
- Physical & Electronic Security Perimeters
- Physical & Electronic Access Control
- Change Control including Life Cycle Management
- Personnel Risk Assessment & Training
- Monitoring Electronic & Physical Access
- Cyber Vulnerability Assessment
- System Security Management
- Cyber Security Incident Response Plans
- Cyber Security Recovery Plans
- UDS can assist your company in development and implementation of all of the procedures, plans, logs, and other documentation in support of Cyber Security Policy requirements.
- Development and maintenance of Risk Based Assessment for identification of critical cyber assets. Our methodology for this assessment includes the following steps:
- System Characterization
- Threat Identification
- Vulnerability Identification
- Control Analysis
- Likelihood Determination
- Impact Analysis
- Risk Determination
- Critical Cyber Assets Identification & Control Recommendations
- Results Documentation
To learn more about UDS Group, or to discuss your specific
needs with one of our associates, please Contact
Us.
|
