CYBERSECURITY ARCHITECTURE DESIGN REVIEW (CADR)

Verify Your OT
Network’s Compliance
with TSA’s Security
Directive

Our OT Security experts will provide a Cybersecurity Architecture Design Review (CADR), which is required at least every two years by the Transportation Security Administration (TSA), to validate that your Oil & Gas (O&G) network architecture effectively isolates critical OT systems from potential threats and vulnerabilities.

Talk to an Expert
CYBERSECURITY ARCHITECTURE DESIGN REVIEW

Validate Your OT Security Controls

With cyber threats targeting more critical infrastructure entities, the TSA is now requiring Cybersecurity Architecture Design Reviews to evaluate the capabilities and associated security policies and controls exhibited by the existing O&G OT security technology footprint.

Our OT Security experts can perform a Cybersecurity Architecture Design Review to provide you with a comprehensive assessment focusing on relevant key strategies and aligning to industry OT/ICS best practices and frameworks such as: National Institute of Standards and Technology (NIST) Cybersecurity Framework (CSF), NIST 800-53, NIST 800-82, CPwE Design and Implementation Guide and the SANS Five ICS Cybersecurity Critical Controls. With our CADR services, we can help your organization:

Evaluate Your OT Design Architecture

Verify and Validate Network Traffic

Analyze Network Device Configurations and Logs

Ensure Compliance with TSA SD Pipeline-2021-02E

CYBERSECURITY ARCHITECTURE DESIGN REVIEW (CADR): METHODOLOGY

Programmatically Assess Your OT Security Environment

Our CADR methodology and process leverages the framework of your choice to evaluate your O&G OT architecture, configurations, policies, security controls and interconnectivity to internal/external systems. When considering a cybersecurity maturity benchmark, we recommend using a Crawl, Walk, Run approach.

Our process begins with the acquisition of architecture drawings and diagrams, asset inventory lists/spreadsheets, network configurations (VLANs, routing, ACLs), firewall configurations, remote access, site-to-site VPNs, OT security policies and procedures and OT monitoring tool data/configuration.

From there we will conduct network and system design documentation reviews, interview key staff members across IT, OT, Security and Leadership to gain valuable insights into your organization's operational and security practices, align our findings with best practices to determine potential areas for improvement and ultimately provide the CADR Report and briefing, which highlights areas of strength and opportunities to enhance your OT security program.

CYBERSECURITY ARCHITECTURE DESIGN REVIEW (CADR): DELIVERABLES

Understand Your Existing OT Security Posture

Every CADR that we provide includes a dedicated deliverable, which describes the work performed, details the risk rating (high, medium and low) of the identified findings, provides remediation steps and includes any additional recommendations to improve security. You should expect to receive the following:

  • Executive Summary – Designed for management personnel, this overview of the information contained within the Technical Analysis section provides a high-level analysis of the work performed, identified findings and recommendations to improve your OT security posture.
  • Technical Analysis – This section provides details on your current OT security posture, including specific recommendations to improve the security of the in-scope OT infrastructure, evidence of those observations and steps to reproduce any testing conducted during the assessment (where applicable).
CYBERSECURITY CERTIFICATIONS

Your Elite, Highly-trained Team

More than 50% of our workforce consists of tenured cybersecurity engineers, architects and consultants. We are also highly certified across industry standards as well as hundreds of cybersecurity solutions.
Why GuidePoint?

Highly Trained, Highly Certified

Examples Include:

GICSP Certificate
GPS Certified GRID
GSE
GPEN
GWAPT

Global Information Assurance

GPS Certified Cyber Guarding
CISSP
CEH Certified
OSCP
OSCE

SANS, ISC2 and Offensive Security

CYBERSECURITY ARCHITECTURE DESIGN REVIEW (CADR) OUTCOMES

Validate that Your Oil & Gas Network Architecture Effectively Isolates Critical OT Systems from Potential Threats

Our Cyber Architecture Design Review Assessments provide you with the necessary insights to ensure the effectiveness of your OT security posture as well as compliance with TSA SD Pipeline-2021-02E.

Understand Your OT Security Posture

Evaluate your OT architecture, validate network traffic, analyze configurations and logs.

Gain Actionable Recommendations

Gain specific recommendations to improve the security of the in-scope OT infrastructure.

Ensure Compliance

Validate your OT Security environment and ensure compliance with TSA SD Pipeline-2021-02E.

Your Trusted Advisor

Our team works side-by-side with you as your cybersecurity partner.

“GuidePoint Security is basically family. They’re always there when I need them. At the end of the day GuidePoint is always there to help and that’s how they add value.”

Mark Gilman

Security Manager

GET IN TOUCH

Contact Us

Additional Resources

View All >

Edit Content

Data Sheet

Download
Breach & Attack Simulation as a Service (BASaaS)
Edit Content

Event

Register Now
The Brick House: Identity Platform Convergence & the Future of Access Controls
Edit Content

Webinar

Watch Now
GRIT 2025 Ransomware & Cyber Threat Report Presentation