Malicious Software Prevention for NERC CIP-007 Compliance

Authored by
Matthew E. Luallen, Co-Founder, Encari
Paul J. Feldman, Chairman of the Midwest ISO, Independent Director of Western Electricity Reliability Council (WECC)

This paper discusses why application whitelisting may serve as a compensating control for NERC CIP-007, R3 (security patching) and solution for CIP-007, R4 (anti-malware). Application whitelisting also stops all unknown applications from executing; therefore, depending upon installation options, the same application whitelisting implementation may simultaneously aid utilities in meeting NERC CIP-003, R6 (change control and configuration management).

Click here to download this whitepaper.