TSA Security Directive – Pipelines Directed To Report Cyber Breaches After Colonial Incident

TSA Security Directive attached.  Effective today, 5/28/21, to 5/28/22.

“This Security Directive requires three critical actions. First, it requires TSA-specified Owner/Operators to report cybersecurity incidents to the Department of Homeland Security’s

Cybersecurity and Infrastructure Security Agency (CISA) [within 12 hours]. Second, it requires Owner/Operators to designate a Cybersecurity Coordinator who is required to be available to TSA and CISA 24/7 to coordinate cybersecurity practices and address any incidents that arise. Third, it requires Owner/Operators to review their current activities against TSA’s recommendations for pipeline cybersecurity to assess cyber risks, identify any gaps, develop remediation measures, and report the results to TSA and CISA.”