Learn more about Hart Energy Conferences
Get our latest conference schedules, updates and insights straight to your inbox.
When did you last change your login password for your personal computer? If your approach to cybersecurity is anything like mine, then it was set back when the system was brand spanking new and fresh out of the box 10 years ago. Has its operating system been updated recently? Nope, why bother updating a system or software that is used to write the occasional email or store pictures? It doesn’t house the launch codes for the country’s nuclear arsenal. We just need to keep the antivirus software current and all is well in cyberland, right?
While the examples above are a bit extreme and too focused on personal computing, for those entities looking to do harm, it is an ideal setup. And especially so in those times when a personal computer is used to remotely access a work server to access a file or send an email.
The use of digital technologies and increasing dependence on cyberstructures has exposed the oil and gas industry to new sets of vulnerabilities and threats, according to a DNV GL press release. The organization recently delivered a study to the Lysne Committee—appointed by the Norwegian Ministry of Justice and Public Security—that revealed the top 10 most pressing cybersecurity vulnerabilities for companies operating offshore Norway. The issues are equally applicable to oil and gas operations anywhere in the world.
In the list of 10, there are the well-known, like lack of cybersecurity awareness, the use of mobile devices and storage units (i.e., smart phones and flash drives) and vulnerable software. Remote work during operations and maintenance also made the list.
The vulnerability falling in the No. 10 spot is the use of outdated and aging control systems in facilities. With more than 70% of the world’s oil and gas production coming from mature fields, it is a concern of particular note.
“Many installations on the Norwegian Continental Shelf are designed to have a lifetime of between 15 and 25 years, and a number of these have been allowed to operate for longer. This means a lot of the equipment and software is outdated and not very well adapted to today’s digital vulnerabilities,” the executive summary stated. “The digitization of the sector is taking place continuously. ‘The Internet of Things’ will lead to more units with digital vulnerabilities.”
According to the release, DNV GL believes vulnerabilities can be addressed through a risk-based approach, using the bow-tie model familiar in safety barrier management. This allows companies to identify the threats to and vulnerabilities of assets and operations and plan barriers to prevent incidents and mitigate the consequences of cyberrisks.
To access the report (in Norwegian) or a brief synopsis (in English), visit dnvgl.com/oilgas/download/lysne-committee-study.html.
Contact the author, Jennifer Presley, at jpresley@hartenergy.com.
Recommended Reading
TPH: Lower 48 to Shed Rigs Through 3Q Before Gas Plays Rebound
2024-03-13 - TPH&Co. analysis shows the Permian Basin will lose rigs near term, but as activity in gassy plays ticks up later this year, the Permian may be headed towards muted activity into 2025.
To Dawson: EOG, SM Energy, More Aim to Push Midland Heat Map North
2024-02-22 - SM Energy joined Birch Operations, EOG Resources and Callon Petroleum in applying the newest D&C intel to areas north of Midland and Martin counties.
Gushing, Ohio: EOG Joins Ascent, Encino in Top Oil Wells
2024-01-22 - EOG’s latest wells in its new Ohio oil play are rolling into state public records, while Ascent Resources and Encino Energy are reporting the biggest producers. All three are landing 3-milers. Some are 3.5 miles.
Tech Trends: Halliburton’s Carbon Capturing Cement Solution
2024-02-20 - Halliburton’s new CorrosaLock cement solution provides chemical resistance to CO2 and minimizes the impact of cyclic loading on the cement barrier.
Commentary: The Oil and Gas Future—Believe It or Not
2024-01-10 - If you believe the IEA’s analysis, plenty of oil and gas companies won’t survive very far into the future.