Earlier this month, the United States indicted seven intelligence officers from the Russian Main Intelligence Directorate of the General Staff (GRU) on charges of hacking computers associated with anti-doping sports organizations. However, the hacking was not limited to the anti-doping organizations; allegedly it also extended to an international chemical weapons lab and a global electric company. This latest indictment is a potent reminder for energy companies that the global cybersecurity threat environment is rapidly developing as geopolitical instability increases, and the U.S. energy sector will increasingly find itself in the cross-hairs.
Given this emerging reality, energy companies should consider several practical tips to help prepare for and combat this persistent and growing threat.
First, it is important to remember that hope is not a plan; instead, companies should methodically plan for how to avoid a breach as well as what to do if a breach occurs. Typically, the worst case scenario is