TSA Extends Pipeline Cybersecurity Directives with Key Updates

The TSA extended its cybersecurity directives for pipeline operators, introduced post-Colonial Pipeline ransomware attack, for another year with enhanced performance-based measures. Updates require operators to develop TSA-approved cybersecurity implementation plans, incident response strategies, and annual cyber assessments. These changes aim to strengthen protections against evolving threats, including ransomware and foreign-sponsored cyber actors, while allowing flexibility for tailored security measures.

Learn more about these critical updates here.