WFEC is a G&T utility that operates tens of sub-stations transmitting the power to its regional utilities. As part of the preparations for the NERC CIP v6, WFEC had to map all its low-impact assets in the sub-stations and their application flows. After the mapping of the assets and their application flows WFEC continued with the deployment of security gateways at each sub-station achieving security posture well beyond the NERC CIP requirements. In this session we will present how WFEC used an Industrial IDS to perform the mapping. We will then present the requirements for the security gateways for compliance and beyond, and conclude with lessons learned from the deployment process.
