.png)
In an aerial view, fuel holding tanks are seen at Colonial Pipeline’s Dorsey Junction Station on May 13, 2021 in Washington, DC. The Transportation Security Administration revised its security directive on cybersecurity for oil and natural gas pipelines Wednesday. The directive was issued and later renewed following the ransomware attack on Colonial Pipeline. The updated security directive calls for operators to test previously mandated processes and implementation plans. Oil and natural gas pipeline owners must now: Submit an updated cybersecurity assessment plan to the TSA annually for review and approval. Report the results from prior year assessments every year and include a schedule for assessing and auditing specific cybersecurity measures to ensure they are effective. “TSA requires 100% of the owner/operator’s cybersecurity measures be tested every three years.” At least two Cyber Incident Response Plan measures must be tested. Individuals serving in positions identified in the CIRP response plans need to be included in annual exercises. The new directive seeks to strengthen the resilience of these pipeline s and includes input from industry stakeholders and federal partner agencies, including the Cybersecurity and Infrastructure Security Agency and the Department of Transportation. Access now➔ “TSA is committed to keeping the nation’s […]
CamTrader offers a preview only. View original article. www.cybersecuritydive.com
