Homeland Security Presidential Directive HSPD-7 defined infrastructure as the physical systems as those that are ‘so vital to the United States that the incapacity or destruction of such systems and assets would have a debilitating impact on security, national economic security, national public health, or safety.”
CERM certified professional engineers have been conducting risk management and cyber security for 10 years including cyber security assessments in critical infrastructure. See above Department of Homeland Security certificate.
The CERM engineering team conducts the following independent and objective homeland security Critical Infrastructure Protection (CIP) assessments:
- Analytical. CERM engineers and scientists conduct analytical analysis following CERM protocols evaluating IT and cyber security systems against IEEE, PMI, ISO, NIST, and AEC standards.
- Assurance. CERM engineers can offer the client two levels of assurance:
- Compliance. CERM engineers conduct a compliance audit using COBIT, NIST, or ISO standards.
- Assurance with opinion. CERM engineers issue an opinion based on the results of a governance, risk, and compliance audit.
- Forensics. CERM engineers provide all of the above levels of assurance as well as supplies a letter to DHS averring compliance that above criteria have been met. Critical infrastructure consists of systems and networks that if interrupted, destroyed, or disrupted will have dire consequences.