Skip to main content

2. Audit Assistance

Created On
Last Updated On
byRobin Berthier
You are here:
< All Topics

Performing a regular review of your compliance metrics is important for your organization.  Performing the review manually is time consuming and tedious. Audit assistance provides the Compliance Team (Auditor, Compliance Officer, Compliance Analyst, and Consultants) with capabilities that allow for:

  • Verify compliance with cybersecurity regulations and best practices through Policy Review.
  • Seamlessly store evidence for compliance review with Change Tracking.
  • Easily prepare compliance reports using the Audit Assistants listed below:

Industry Best Practice (Standard)

The Best Practice assistant will generate a report covering the following topics:

  • Parser Warnings
  • Unused Groups
  • Rules missing a justification
  • Unnamed nodes
  • Rules that have risk alerts
  • ACL’s with no explicit deny by default rule

Workspace Report (Standard)

The Workspace Report assistant will generate a report that includes detailed information about configuration files that were imported and parsed including:

  • Configuration assessment report including risk alerts
  • Ports and Interfaces
  • Access rules
  • Object groups
  • Path analysis

NERC CIP Compliance (Premium)

The NERC CIP assistant guides the user through the steps required to create a report covering CIP-005 requirements. The NERC CIP audit assistant allows audit teams to classify BES cyber assets as High, Medium, and Low based on the standards. We have added a category for untrusted (Internet, Corp, etc.) to tag non BES assets. The NP platform supports compliance teams to store, collect, and report evidence related to the following requirements:

  • CIP-002 – BES Cyber System Categorization; impact rating and 15-month review
  • CIP-003 – Security Management Control; cyber security policy
  • CIP-005 – Electronic Security Perimeter; remote access management
  • CIP-007 – System Security Management; ports and services
  • CIP-010 – Change Management and Vulnerability; configuration change management, configuration monitoring, vulnerability assessment

A demo workspace for the NERC CIP audit assistant is included with the software.  Upon installation, the demo workspace will be displayed.   To see the audit assistant in action, follow these steps:

  1. Click on the demo workspace to build the topology.
  2. Click on the auto group function on the left menu to group assets by criticality. Red zones represent your most critical assets.
  3. On the left menu, select summary reports and the NERC-CIP Compliance Report
  4. Click through the wizard, the defaults will represent the selections suggested by the auto group function.
  5. Click Generate Report to view the report in a new tab.

PCI Compliance (Customer Preview)

This PCI-DSS assistant guides the user through the steps required to create a report covering the below requirements. The PCI audit assistant allows audit teams to classify POS and CHD assets and their criticality for audit purposes and generates an easy-to-use report for compliance evaluation.

  • 1.1.1a – Formal process for approving and testing all network connections
  • 1.1.1b – Interview Process
  • 1.1.1c – Change Tracking
  • 1.1.2 – Network Diagram: Internet, DMZ, Internal
  • 1.1.3 – Data Flows across systems and networks
  • 1.1.4 – Interface requirements between Internet, DMZ’s, and internal network
  • 1.1.6 – Justification for use of all ports and services
  • 1.1.7 – Rule set review every 6 months
  • 1.2.1 – Restricted traffic to CHD
  • 1.2.2 – Secure and synchronize router configuration files
  • 1.3.1 – DMZ shows limited inbound traffic
  • 1.3.2 – Limited inbound internet traffic to IP addresses within the DMZ
  • 1.3.6 – Separation of CHD storage from DMZ
  • 1.3.7 – Network Address Translation (NAT)
  • 11.3.4 – Segments which have no connections to CHD

A demo workspace for the PCI audit assistant is included with the software.  Upon installation, the demo workspace will be displayed.   To see the audit assistant in action, follow these steps:

  1. Click on the demo workspace to build the topology.
  2. Click on the auto group function on the left menu to group assets by criticality. Red zones represent your most critical assets.
  3. On the left menu, select summary reports and the PCI Compliance Report
  4. Click Generate Report to view the report in a new tab.
Table of Contents
  • Product
    • Product Text

      Product Tour

      NP-View is the perfect solution to prepare for an audit: it works offline and runs on any desktop. NP-Live is the solution for businesses that require continuous network compliance monitoring.

    • Product TOI np-view

    • Product TOI np-live

  • Solutions
    • Solutions TOI NERC-CIP

    • Solutions TOI Security Assessment

    • Solutions TOI IEC-62443

    • Critical Asset Protection

    • Solutions text

      Solutions

      Learn how Network Perception software can support your compliance and security operations.

  • Resources
    • Resources text

      Resources

      Learn how to use Network Perception software through video tutorials and documentation. Explore the Knowledge Base for technical questions and advanced features.

    • Resource TOI Whitepapers

    • Resource TOI Knowledge Base

    • Resources TOI Tutorial Videos

  • Company
    • Company text

      Company

      Network Perception was founded in 2014 by a team of researchers and security experts. Learn more about our history and positions available.

    • Company TOI About

    • Company TOI Careers

    • Company TOI Contact

    • Company Partner Program

  • News & Updates
  • Customer Portal
  • Demo