DNV GL recently issued a new globally applicable recommended practice (DNLVGL-RP-G108) to assist oil and gas operators, system integrators and managers, and vendors in the offshore industry to manage increasing cybersecurity threats. The guidance is designed to help the oil and gas industry improved the security of their operational technology.

A Ponemon Institute study found that over two-thirds of oil and gas companies globally suffered a significant cyber-attack in 2016, which does not include unreported or undetected incidents. According to DNV GL, cyber-attacks in the oil and gas industry (like virtually every other industry) are getting more sophisticated and costly, including malware, ransomware and unauthorized access to system infrastructure. This guidance will assist the industry with preparing for and managing the attacks, as well as the severity of the attacks.