It’s no secret that cyberattacks against critical infrastructure are increasing. The recent attacks against water treatment plants, pipelines, vital hospital systems and food processing facilities have all made recent headlines and demonstrate the vulnerability of all types of critical infrastructure providers. The attacks have caused chaos, value chain disruption and crippling fuel shortages, and we must not ignore the potential for more physical impact that could come to the point of costing human lives.
Recognizing the disruptive and destructive nature of these attacks, the United States Federal Government recently released a new DHS/TSA Security Directive, “Security Directive Pipeline-2021-01, Enhancing Pipeline Cybersecurity” with an effective date of May 28, 2021 to May 28, 2022. The White House has also warned critical infrastructure companies to step up their cybersecurity programs.
Change is Coming for Pipeline Owner and Operators
The security directive lays out a broad set of requirements for owners/operators, with a focus on three critical actions:
Requires TSA-specified owner/operator to report cybersecurity incidents to the Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA).
Requires owner/operator to designate a cybersecurity coordinator who is required to be available to the TSA and CISA 24/7 to coordinate cybersecurity practices and address any incidents that arise.
Requires owner/operator to review their current activities against TSA’s recommen ..
Support the originator by clicking the read the rest link below.
