TSA pipeline directive requires reporting and assessments, to be followed by new security requirements; industry urges flexibility

The Transportation Security Administration today is issuing a security directive requiring the pipeline sector to report cyber incidents to CISA, designate a corporate cyber coordinator who is always on call, and for owners/operators to assess how their current cybersecurity practices align with TSA’s voluntary guidelines, identify gaps and provide a plan for addressing those areas.

Senior DHS officials briefed reporters Wednesday evening on the new security directive, and stressed that it will be followed up “in the not so distant...