Cooper Power Systems has introduced a new program to qualify the applicability of Microsoft Security Updates to its products. The program focuses on the company’s substation and feeder automation platforms that operate on a version of Microsoft Windows. The qualification process provides users with timely information on the applicability of new security updates to Cooper Power Systems products and also interoperability test results. The program is part of Cooper Power Systems’ ongoing “Helping Utilities Meet NERC CIP” initiative, which launched in January 2007 to help provide utilities with advanced automation and integration solutions that meet NERC CIP requirements.
“NERC CIP requires utilities to implement a security patch management process,” said Jacques Benoit, Cooper Power Systems’ Senior Analyst for Information Security. “This program helps test the applicability of Microsoft Security Updates for many of its products as part of our quality assurance process. By making this information available to our customers in a timely manner, we help them meet this critical NERC CIP requirement.”
Patch Management and Configuration Management are key components in ensuring continued secure operation of control systems. Cooper Power System’s recently released YUKON IMS Configuration Manager software, providing utilities with an advanced tool to meet the Configuration Management requirement. Together, the patch management process and Configuration Manager help utilities meet key requirements of NERC CIP-003, 005, and 007.