Andrew Ginter explores the evolution of the TSA’s directives for pipeline cybersecurity, as well as explaining their reasoning.
For decades, cybersecurity for infrastructure such as oil & gas pipelines was treated as a “done deal” until the May 7th Colonial Pipeline Ransomware Cyberattack. Regulators and business leaders were both caught off guard, having dismissed the robust security required for pipeline infrastructure as beyond sufficient.
While the OT environment of the Colonial Pipeline was never directly compromised, it did have to be shutdown till it could be confirmed that no breach had occurred. This precautionary measure presents a huge risk to all pipeline operations and led the TSA to rollout more robust directives for securing pipeline infrastructure. And there’s a good chance they’ll be rolling out some more in the near future.
SPEAKERS:
Andrew Ginter – VP Industrial Security at Waterfall Security Solutions and author of Secure Operations Technology (SEC-OT)
- Active Defense in OT – How to Make it Work | Episode 110 - August 7, 2023
- Cyber Attacks with Physical Consequences 2023 Threat Report | Recorded Webinar - July 26, 2023
- The Curious Case of Dual Event Logs - July 25, 2023