ICS/OT Security

Cyber Security in America’s Oil & Gas Industry

By February 24, 2017 No Comments

In a recent study from the Ponemon Institute – The State of Cybersecurity in the Oil & Gas Industry: United States it was reported that, on average, 46 percent of cyber attacks are believed by respondents to go undetected, and nearly 70 percent of oil and gas companies were hacked in the past year. “[fusion_builder_container hundred_percent=”yes” overflow=”visible”][fusion_builder_row][fusion_builder_column type=”1_1″ background_position=”left top” background_color=”” border_size=”” border_color=”” border_style=”solid” spacing=”yes” background_image=”” background_repeat=”no-repeat” padding=”” margin_top=”0px” margin_bottom=”0px” class=”” id=”” animation_type=”” animation_speed=”0.3″ animation_direction=”left” hide_on_mobile=”no” center_content=”no” min_height=”none”][This] must serve as a call to action,” said Judy Marks, CEO, of Siemens USA, in a press release (Business Wire).

Cyber attacks in the oil and gas industry can have catastrophic effects on the economy and to national security. Many of the recent attacks on Oil & Gas operational technology (OT) infrastructure, or Industrial Control Systems (ICS), resulted in the loss of confidential exploration and production information. However, compromise and malicious hacking of OT in critical infrastructure may also result in the following:

• Reportable Safety Incidents from Harm to Operators
• Utility or Power Interruption to Production Facilities
• EPA Compliance Violations
• Plant Sabotage/Shutdown
• Equipment Damage
• Production Disruption
• Lower Product Quality

Only 41 percent of respondents claimed that their organizations have continuous monitoring set up on their OT infrastructure and that they are still in the early to middle stages of cyber security maturity. Most of the respondents felt that OT is at greater risk than the IT environment, and many organizations are now outsourcing OT security operations because they do not have the expertise internally.

Continuous monitoring combined with threat intelligence can help identify threats sooner and enable teams to respond more quickly to resolve cyber security incidents. A Cyber Security Operations Center (CSOC) is a vital capability for achieving long term and cost effective management of risks.

Red Trident provides CSOC services and solutions for critical infrastructure organizations to protect and defend their assets, facilities and, ultimately, people. For clients whose cyber security maturity is too low for a continuous monitoring capability, Red Trident offers ICS and IT Cyber Security Program development support which maximizes a customer’s Return on Security Investment (ROSI) through cyber security and automation operational efficiencies, and supports the establishment of a roadmap and timeline for achieving continuous monitoring.

To learn more about our cyber security program development and CSOC services, please reach out to us at 832-493-1153 or info@redtridentinc.com.[/fusion_builder_column][/fusion_builder_row][/fusion_builder_container]