Skip to main content
NERC CIP Compliance
The North American Electric Reliability Corporation (NERC) has issued a series of standards that serve as the minimum security requirements for power generation, transmission and distribution enterprises.

Overview Of NERC CIP Compliance

The North American Electric Reliability Corporation (NERC) is an international regulatory authority tasked with maintaining the safety and reliability of our nation's bulk power systems. To accomplish that mission, NERC has issued a series of Critical Infrastructure Protection (CIP) Security Standards that serve as the minimum security requirements for power generation, transmission, and distribution enterprises.

The NERC CIP standards are developed using a results-based approach that focuses on performance, risk management, and entity capabilities. It includes guidelines for testing, repair, and prevention of security issues of critical infrastructure assets.

RedTeam Security's consultants are highly experienced in the field of critical infrastructure penetration testing and helping clients meet the NERC-CIP Standards. We can help you identify and analyze vulnerabilities in your networks, applications, industrial systems, and facilities and put you on the right path to correct them.

Elevate your security by evaluating your risk with critical infrastructure penetration testing
Quote My Project Quote My Project

Watch RedTeam Hacker Into The US Power Grid

NERC CIP Security Standards

On November 22, 2013, NERC approved what's known as CIP Version 5, the current set of standards for mitigating cyber risks to the bulk power system. Click on any of the standards below to see NERC's full explanation and requirements.

Please note these standards are authored directly by NERC and are not affiliated with RedTeam Security. Many thanks to NERC for making this important security documentation available for public dissemination. For additional information, please visit NERC.com.

NERC CIP Penetration Testing

Strengthening critical infrastructure security and resilience depends on public and private critical infrastructure owners and operators making risk-informed decisions when allocating limited resources.

With RedTeam Security's critical infrastructure penetration testing, risk evaluation, and risk management planning help, critical infrastructure owners, operators, and partners can more effectively meet the CIP Standards to maintain the integrity of the bulk power system.

More On NERC CIP Penetration Testing:

Critical Infrastructure Penetration Testing Approach
Critical Infrastructure Penetration Testing Deliverables

Get a Customized Proposal

Use our Scoping Questionnaire to provide us with the necessary information to put together a proposal for you. Please be as thorough as possible with your responses, as it helps us ensure an accurate and complete proposal.
If you're interested in application penetration testing, you may find this article helpful when formulating your responses: Understanding Application Complexity For Penetration Testing.

If you have any questions, contact us at 612-234-7848 or schedule a meeting. We will follow up promptly once we receive your responses. We look forward to speaking with you soon.

Having trouble viewing the Scoping Questionnaire? Check to see if an ad-blocker is keeping the page from loading properly.

Dedicated Client Portal

Interact in real-time with your RedTeam security professionals on our user-friendly client portal and see firsthand as the team closes in on your company data.

Certified Security Experts

Our trusted security professionals hold certifications from the leading industry organizations, including OSCP, CASS, CPT, CISSP and more.

Research-Focused Approach

We hold industry-leading certifications and dedicate part of every day to research the latest exploit techniques to ensure our clients remain protected from evolving online attacks.

Free Remediation Testing

Once your team addresses remediation recommendations, RedTeam will schedule your retest at no additional charge.