NERC CIP and IAM Case Study Delivered
Posted by Frank Villavicencio on Tue, May 18, 2010
As previously announced, on Tuesday May 11th, 2010, we hosted a webinar focused on PPL's strategy for streamlining and automating compliance with NERC CIP requirements and other regulations, such as SOX and FERC, by leveraging an Identity and Access Management (IAM) solution.
My co-presenter, Pete Johnson, Director of Information Assurance at PPL, did a fantastic job explaining the challenges and rationale that went into PPL's strategy and execution, as well as fielding many questions on the fly. Thanks Pete!
We had a pretty good turnout, and based on the number of questions we received during the Q&A portion, I would say it was pretty interactive.
We discussed topics in the area of provisioning, deprovisioning, privileged user management, organizational and project structure and alignment, handling compliance for legacy apps via identity activity monitoring; which reveals the level of interest in addressing these requirements in a more efficient manner than with manual labor. I felt that the audience was versed in NERC CIP and well aware of IAM, all of which helped make the session more valuable.
A replay of the webinar as well as the presentation are available here; and below is the presentation in online format.
As always, your comments and feedback on this webinar and topic are most welcome.