NERC Compliance and Event Log Management

NERC (North American Electric Reliability Corporation) has produced a body of IT security requirements that are more specific than most other industry standards with regard to log data.

For those seeking compliance with NERC’s CIP-007-1, Event Archiver ® can form the cornerstone for a log audit compliance effort by providing the automated collection of logs for the 90 day retention requirement.

Log file review is also required. Event Analyst ® can assist by providing automated log reports on specified log data and building audit trails.

If syslog generating devices are also part of the environment, Event Alarm ® is recommended to provide log audit capability via its syslog bridge service.

For more specific information on the above components of the Total Event Log Management Solution and how they accomplish these tasks, documentation is available in our Support Library.