NERC compliance deadlines are approaching. At the same time, NERC requirements are changing and our country is moving towards an intelligent electrical grid. It is now more important than ever before to get a third-party, independent assessment of your NERC CIP compliance program so you can:

	•	Confirm that your assets are properly classified (critical / non-critical)
	•	Conduct a detailed assessment of your current technologies
	•	Perform a high-level review of your processes and procedures and ensure that they are thoroughly documented with proper controls established
	•	Gain an understanding of what peers are doing, and learn new ways to identify and mitigate risks prior to an official audit.

	The Structure Group® has performed gap assessments for leading energy companies across North America. And when called upon, have supported the design and implementation of the their actual compliance programs. Structure has developed a full suite of compliance services specifically designed for the rigorous demands of today's tough NERC CIP regulatory environment. We will customize a package that is tailored for your organization's specific needs, including our eight-step program.
	1. Identify CA / CCA's
	Identify and document Critical Assets (CA) and Critical Cyber Assets (CCA) through a risk-based assessment methodology.
	2. Electronic Security Perimeter (ESP) Design
	Develop a technical architecture design for meeting NERC CIP compliance that includes detailed plans for securely managing systems and networks associated with the CCA's identified.
	3. Physical Security Perimeter (PSP) Design
	Develop a physical security perimeter design for implementing physical security controls that includes drawings, specifications, and implementation budgets.
	4. Process / Procedure Documentation
	Perform a high-level gap assessment of existing NERC CIP documentation; develop customized policy, procedures, and compliance artifact documents necessary to meet the letter of NERC standards.
	5. Training
	Design and develop a Cyber Security training program; develop, deliver and implement Cyber Security training to applicable personnel; design and implement a security awareness program.
	6. Compliance Management Solution (CMS) Assessment / Implementation
	Perform an assessment of a compliance management solution tailored to meet requirements for NERC CIP and non-CIP regulatory standards; assist with selection of software or custom design; provide implementation services.
	7. Implementation / Remediation
	Implementation of all remediation action plans; implementation and program management services for information and control systems security technologies; on-going staff augmentation to perform compliant activities.
	8. Annual Vulnerability Assessment
	Perform an annual vulnerability assessment; provide remediation plans.
	Contact Us Today for a Complimentary, 2-Hour Consultation
	The Structure Group is an industry leader in consulting and services for the electric power industry. We would like to offer your organization a complimentary, 2-hour consultation to discuss exactly how you will benefit from our NERC CIP compliance program and our independent, third-party assessment of your risk-based methodology as required by NERC CIP-002. To take advantage of this great offer, simply email or call Tobias Whitney at tobias.whitney@thestructuregroup.com, 314.422.7050.
	For More Information
	To learn more about The Structure Group, visit www.thestructuregroup.com.