More than three-quarters of Canadian energy companies fail to have basic cybersecurity measures in place, a security lag that puts the country's energy infrastructure at risk, a new study has found.
Freedman told Glacier Media the energy sector is an increasingly attractive target for both financially motivated cybercriminals and nation-state actors. The protocol has three levels of protection — monitor, quarantine and reject, with reject being the most secure for preventing suspicious emails from reaching the inbox.
She said Canada’s Onshore Pipeline Regulations and the Canada Standards Association provide a regulatory framework and mandatory requirements for cybersecurity on CER-regulated pipelines. “This helps us verify that CER-regulated companies have appropriate proactive measures in place to protect the CER and Canada’s pipeline network from cyber-attacks.”
He said the utility meets multiple industry technology standards and critical infrastructure protection requirements.