How Pipeline Owners and Operators Can Fulfill the TSA’s Second Security Directive


Senior officials at the Department of Homeland Security (DHS), of which the TSA is a part, announced at the time of their security directive that they would soon require pipeline organizations to implement a new set of mandatory security controls or face financial penalties.

In mid-July, CISA announced the rollout of at least some of those controls in the form of a second security directive from the TSA. The mandate requires critical pipeline owners and operators to implement specific measures that can help them to defend against digital threats such as ransomware. It also necessitates entities to develop and enact a digital security contingency and recovery plan as well as review the design of their cybersecurity architecture.

Read more…
Source: Tripwire