Jerome Farquharson, CISSP

Jerome Farquharson, CISSP
Practice Manager, Compliance & Infrastructure Protection
Email Jerome
P: 314-682-1628
F: 314-682-1600

Experience Meeting NERC CIP Requirements

Experience Meeting NERC CIP Requirements

The physical and cybersecurity of critical electrical transmission infrastructure is not something to be left to amateurs.

Burns & McDonnell brings a century of experience designing and building the power plants, substations and transmission lines you need to protect. We are also involved in developing the standards that are guiding the industry.

Who better to design, evaluate and install the systems that will secure your critical infrastructure against the threats you face?

Regulatory Response

As you develop your plans to comply with the North American Electric Reliability Corp. Critical Infrastructure Protection (NERC CIP) standards, the Burns & McDonnell security consulting services team can help you at every stage. We can recommend physical security measures that reduce costs and minimize the footprint of your security perimeter to secure coal, hydro, combustion turbine or substation assets.

We can provide access control with multiple layers of authentication, including card access, PIN access, biometrics, and closed-circuit TV surveillance and monitoring. We can also develop intrusion detection, corporate security policies and procedures, and training for employees, vendors and contractors. Our network analyses help you identify potential compromise points and implement appropriate firewalls and other protective devices, as well as secure those networks within defined electronic security perimeters.

Beyond Security

Because we are engineering consultants first and security providers second, we bring your security projects the expertise in program management, design, networking and communications that allow us to address NERC CIP compliance at all levels, from bare technology development and installation to complete program management.

   Hear how Burns & McDonnell has helped ITC Holdings understand and implement programs to comply with NERC CIP standards.
  • Gap assessment and remediation
  • Physical assessment
  • Policy and procedure design and development
  • Compliance governance management system design
  • Reliability critical asset and critical cyber asset methodology design
  • Regulatory compliance planning
  • Reliability preassessment audits
  • Staff augmentation



The U.S. power grid generates and delivers power — just as it was designed to do. But as cyberattacks become more sophisticated and targeted, protecting the grid is of utmost importance.

Read more


For guidance in understanding and complying with NERC Critical Infrastructure Protection regulations, check out our series of power utility cybersecurity webinars.

Watch now