Knowing just where you system is and what you may have to do to fend off any cyber incidents is what the Control Systems Security Program (CSSP) has done as it improved on the original Cyber Security Evaluation Tool (CSET) to assist owners in conducting self-assessments.
CSET is a desktop software tool that enables users to assess their network and ICS security practices against recognized industry and government standards, guidelines, and practices.
A completed CSET assessment provides a prioritized list of recommendations for improving the organization’s ICS or enterprise network cyber security posture and identifies what the user would need to achieve the desired level of security.
CSET and associated training are available free of charge to Critical Infrastructure and Key Structures stakeholders.
Since October 2009, CSSP has distributed more than 1,000 copies to asset owners, enabling them to assess and address cyber security risk within their ICS environment.
The new release, CSET 3.0, includes the most recent standards, an enhanced user interface, and a graphical ICS architecture mapping capability.
For information on the CSET, click on the CSSP website.