The United States Department of Homeland Security (DHS) recently announced new pipeline cybersecurity requirements that require critical pipeline owners and operators to report confirmed and potential cybersecurity incidents to the Cybersecurity and Infrastructure Security Agency (CISA).
Pipeline owners and operators are also required to provide 24/7 cybersecurity coordinators while ensuring that cyber risks, vulnerabilities, and remedies are reported to the Transportation Security Administration (TSA) and CISA within 30 days of reviewing their current security practices.
While the latest security directive was triggered by the ransomware attack on the Colonial Pipeline, it aims to make it easier for DHS to identify, protect against and respond to cybersecurity threats targeting companies in the critical pipeline sector.
For more information, read the original story in Bleeping Computer.