CIP-002 is the foundation of the entire NERC CIP compliance program. Get it wrong and every other standard has a problem — because the BES Cyber Systems you identify here determine what CIP-003 through CIP-011 apply to. This guide walks through how to do it correctly, what auditors look for, and the mistakes that generate findings.
Body paragraph text goes here. Use bold for emphasis and inline code for technical terms, tag names, file paths, or commands.
Content under the sub-heading.
Warning label: Callout text goes here. Use for important notes, caveats, or things that commonly go wrong.
Best practice: Green callout text goes here. Use for recommended approaches or tips.
Critical: Red callout text goes here. Use for serious mistakes to avoid or compliance risks.
| Column 1 | Column 2 | Column 3 |
|---|---|---|
| Row 1 Col 1 | Row 1 Col 2 | Row 1 Col 3 |
| Row 2 Col 1 | Row 2 Col 2 | Row 2 Col 3 |
| Row 3 Col 1 | Row 3 Col 2 | Row 3 Col 3 |
# Comment line keyword/value/path another_key = "string value" # inline comment
Use our free NERC CIP Audit Readiness Checklist for a structured self-assessment before your Regional Entity audit. Covers all nine active CIP standards with evidence requirements and a 60-day preparation timeline.
Published by PROMEC Systems · promecsystems.com · Based on NERC CIP v6. Always verify against current NERC standards and your Regional Entity's audit guidance. Not legal or regulatory advice.