NERC CIP

What is the minimum IT Security Requirements for NERC CIP Standards? below simple checklist for North American Reliability Corp. (NERC) Critical Infrastructure Protection (CIP) standards:
Electronic Security (CIP-002, 003, 005, 007, 009)
- Maintain an inventory of all electronics that either are part of the critical assets list or are necessary to the operation of critical assets.
- Protect access to these critical cyber-assets on a need-to-know basis.
- Create an electronic security perimeter that prevents unauthorized users from accessing any critical cyber-asset, whether they are outside or inside the corporate network.
- Ensure that all electronic cyber-assets are secure via user account management, equipment, password management, and secure networking policies.
- Implement and test a critical cyber-asset recovery plan.