“This new directive is a good start. Mandatory breach reporting and security gap assessments are important first steps to address security issues in the oil and gas sector. As seen with Colonial, the cost of downtime is prohibitive; many in this sector already engage in mature cybersecurity practices. However, the distributed nature of oil and gas operators — pipelines, rigs and refineries in remote locations — makes securing their physical infrastructure difficult. We know from our customers that no two operators are alike in terms of the exact processes and systems they’re using. These factors make it harder to establish one set of cybersecurity requirements that will work effectively for all.
Critical infrastructure Critical Infrastructure Cybersecurity Critical Infrastructure Security cybersecurity cyber threat analysis Defense in Depth Guardian ICS anomaly detection ICS Asset Inventory ICS Cybersecurity ICS Cybersecurity for Substations and Power Grids ICS Detection Challenge ICS intrusion detection ICS Operational Visibility ICS security ICS Threat Detection IEC 61850 IEC 62351 IIoT IIoT Security industrial control system Industrial Cybersecurity Industrial cybersecurity solutions industrial security Industroyer IoT IoT cybersecurity IoT devices IoT device security IoT Security IT/OT convergence Nozomi Networks Nozomi Networks Labs operational technology security OT Cybersecurity OT security Power Grid Power System Security ransomware S4 SANS ICS Survey SCADA security threat intelligence TRITON WG15