Training
Featured CourseView All Courses
Get a free hour of SANS training

Experience SANS training through course previews.

Learn More
Learning Paths
FeaturedView all Focus Areas
Cloud Security Training
Can't find what you are looking for?

Let us help.

Contact us
Resources
SANS Community Benefits

Connect, learn, and share with other cybersecurity professionals

CISO Network

Engage, challenge, and network with fellow CISOs in this exclusive community of security leaders

Join the SANS Community

Become a member for instant access to our free resources.

Sign Up
For Organizations
Public Sector

Mission-focused cybersecurity training for government, defense, and education

Partnerships

Explore industry-specific programming and customized training solutions

Sponsorship Opportunities

Sponsor a SANS event or research paper

Interested in developing a training plan to fit your organization’s needs?

We're here to help.

Contact Us
Talk with an expert
Talk with an expert

NERC CIP-015: Monitoring Deep Inside Critical Networks to Keep Adversaries Outside

Login to download
NERC CIP-015: Monitoring Deep Inside Critical Networks to Keep Adversaries Outside (PDF, 0.90MB)Published: 09 May, 2025
Created by
Tim Conway
Tim Conway

The North American Electric Reliability Corporation (NERC) Critical Infrastructure Protection (CIP) Standards (hereinafter referred to as the Standards) require preventive controls to establish Electronic Security Perimeters (ESPs) containing Bulk Electric System (BES) Cyber Systems and to control communications in and out of those ESPs.

Meet the expert

Tim Conway
Tim Conway

Tim Conway

Fellow

Tim serves as the Technical Director of ICS and SCADA programs at SANS, and he is responsible for developing, reviewing, and implementing technical components of the SANS ICS and SCADA product offerings.

Read more about Tim Conway

Additional resources

Prioritized Industrial Cyber Defense in Oil and Gas

WhitepaperIndustrial Control Systems Security
  • 13 Jun 2025
  • Dean Parsons

A Simple Framework for OT Ransomware Preparation

WhitepaperIndustrial Control Systems Security
  • 15 Apr 2025
  • Lesley Carhart

ICS Security and Management of Change: Risks and Resilience

WhitepaperIndustrial Control Systems Security, Security Awareness, Cybersecurity and IT Essentials
  • 15 Apr 2025
  • Jason Dely

Webs of Deception: Using the SANS ICS Kill Chain to Flip the Advantage to the Defender

WhitepaperIndustrial Control Systems Security
  • 14 Apr 2025

Industrial Control System Internal Network Security Monitoring with Open-Source Tools

WhitepaperIndustrial Control Systems Security
  • 5 Dec 2024

False Data Injection Attacks Against Distribution Automation Systems

WhitepaperIndustrial Control Systems Security
  • 5 Dec 2024

Related courses