Cybersecurity for the Oil and Gas Industry

Assess. Protect. Respond.

Like critical industries everywhere, oil and gas operations – upstream, midstream, and downstream – make prime targets for cyber threats of all kinds. Sources of those threats are increasingly criminal enterprises, state actors, and so-called hacktivists with political agendas. That’s in addition to solitary hackers using powerful tools readily available on the Dark Web.

World Oil On-Demand Webcast

Make your offshore operations cyber secure and reliable

Modern offshore operations are highly complex, generating tens of thousands of data points and transmitting them to onshore control centers across multiple types of networks. Offshore facilities also include technologies from many suppliers that interface with the main process control system, each with their own cybersecurity profile. Learn how to navigate this complexity in our webcast with World Oil magazine!

Watch the recording

Learn more

A New Arena of Cyber Protection

In this Hydrocarbon Engineering article, our Global Head of Cybersecurity for Oil and Gas, Sam Miorelli, explains how artificial intelligence can be used to protect refineries against cyber-attack during a turnaround.

Read the article

Cybersecurity for Oil and Gas Operators

Many management and operational executives of Oil and Gas companies can mistakenly believe that cybersecurity is not their responsibility – “It’s IT’s job.” Our latest whitepaper provides three actionable tips that Oil and Gas operators can put into practice to close this cybersecurity blind spot.

Read the Whitepaper

Assess and Plan

Assessments

Cyber Gap Assessment
Vulnerability Assessment
Baseline Compliance Assessment

Security Processes

Incident Response Plan preparation and testing
Disaster Recovery Plan preparation and testing

Protect

DCS Security Controls

Secure Architecture
Device Hardening
Malware Pattern Updates
Application Whitelisting

Additional Controls

Secure Remote Access
Next Gen. Firewall

Detect and Respond

Asset Management

Asset Inventory and Change Monitoring

Vulnerability & Patch Management

ICS Patch Management
Advanced Vulnerability Management

Network Monitoring

ICS Security Event Monitoring
ICS Change Monitoring

Network Detection

Network Intrusion Detection System
Incident Response Retainer
Network Anomaly Detection

World Oil Article

Ensuring robust cyber defense for endpoint energy assets

Companies across the hydrocarbon supply chain recognize the growing threat of sophisticated, malicious cyberattacks. Many companies continue to struggle to defend early-generation and remote operating assets, such as older compressor stations, which were engineered well before the widespread adoption of digital industrial control systems. As a result, these assets are vulnerable to long-term exposure to emerging cyber-risks, without the ability to be patched easily or updated quickly with the latest security defenses.

Learn more

Download the PDF

Siemens Energy and Ponemon Institute Study

Learn how US companies in the oil and gas industry are addressing cybersecurity risks in the operational technology (OT) environment.

According to the findings, the deployment of cybersecurity measures in the industry isn’t keeping pace with the growth of digitalization in oil and gas operations. In fact, just 35 percent of respondents rate their organization’s OT cyber readiness as high. With most respondents describing their organization as having low to medium cybersecurity readiness, 68 percent of respondents say their operations have had at least one security compromise in the past year, resulting in the loss of confidential information or OT disruption.

Read the study