Skip to content

DHS Unveils New Cybersecurity Requirements for Pipelines

Posted by: GuidePoint Security

< 1 min read

May 27, 2021 – Article posted on Bankinfosecurity

The Department of Homeland Security (DHS) has issued a cybersecurity directive that requires the operators of oil and gas pipelines to report ransomware attacks and other security incidents to the government.

The new cybersecurity mandates, which will replace some voluntary guidelines that had been in place for a decade, were announced Thursday in the wake of a May 7 ransomware attack that led Colonial Pipeline Co. to temporarily shut down its pipeline serving the East Coast, triggering fuel shortages in several states.

The security directive, which will be enforced by the Transportation Security Administration and the Cybersecurity and Infrastructure Security Agency, requires companies that own or operate oil and gas pipelines to report any security incidents, as well as potential threats, to DHS. It also requires the firms to have a dedicated “cybersecurity coordinator” available around the clock.

Bryan Orme, principal and partner at cybersecurity firm GuidePoint Security, says that while incident reporting rules and mandatory guidelines will not necessarily lead to better security, the emphasis on cybersecurity should at least bring more attention to the issue.

Read More HERE.

Categories: Cybersecurity News

GuidePoint Security

Potential Impact of the “Executive Order on Improving the Nation’s Cybersecurity”
As a response to the recent spate of cyberattacks on the U.S., from SolarWinds and Microsoft Exchange attacks to the […]
View Page

Related Articles

View All

  • Blog
Potential Impact of the “Executive Order on Improving the Nation’s Cybersecurity”
Posted by: Matt Keller
Read More 6 min read
  • GRIT® Blog
Snail Mail Fail: Fake Ransom Note Campaign Preys on Fear
Posted by: Grayson North
Read More 5 min read
  • GRIT® Blog
To Pay or Not to Pay: The Ransomware Dilemma
Posted by: Jason Baker
Read More 11 min read