Protecting Critical Infrastructure

Malware. Data breaches. Insider threats. Cyber espionage. It’s not a question of if you will be attacked but when. In fiscal year 2016, ICS-CERT responded to 290 incidents with the energy sector accounting for 59 of those incidents. As cyber threats evolve, the oil and natural gas industry faces unique challenges with the increasingly interconnected delivery of services to a common consumer and supplier base.

To protect our nation’s critical infrastructure, the Oil and Natural Gas Information Sharing and Analysis Center (ONG-ISAC) was created in 2014 to provide shared intelligence on cyber incidents, threats, vulnerabilities, and best practices to enhance security in the industry.

ONG-ISAC Mission

ONG-ISAC serves as a central point of coordination and communication to aid in the protection of exploration and production, transportation, refining, and delivery systems of the ONG industry, through the analysis and sharing of trusted and timely cyber threat information, including vulnerability and threat activity specific to ICS and SCADA systems.
The mission of the ONG-ISAC is structured around four cornerstones:

Four Cornerstones

Anonymized Sharing
Industry Owned and Operated
Protection from Freedom of Information Act (FOIA) Disclosure and Compliant with Anti-trust Laws.

Facilitating information sharing for our members

The ONG-ISAC acts as a dynamic cybersecurity hub for members to communicate and coordinate against network and ICS cyber attacks. The ONG-ISAC enriches intelligence through analysis.

Get access to shared intelligence in near real-time, in a trusted and secure manner.

Confidentiality is essential in creating a secure and trusted environment. The ONG-ISAC employs the Traffic Light Protocol (TLP) for information sharing. Members have the option of sharing information either anonymously or with attribution. Only ONG-ISAC members receive information that is classified as TLP Green, Amber, and Red; non-members only receive information that is classified as TLP Clear.

Traffic Light Protocol for Sharing Information

Authorized information recipients


Restricted to a defined group (e.g., only those present at a meeting). Information labeled “Red” should not be shared with anyone outside of the immediate group.


Confidential. This information can be shared with ONG-ISAC members.


Information within this category can be shared with ONG-ISAC members, government and strategic partners. Information labeled “Green” should not be shared in public forums.


This information can be shared freely, and is subject to standard copyright rules.


Want to know more about our memberships?


Industry members are oil and natural gas companies.

Allied Partners

Trade and industry associations, academic institutions, research organizations and ISACs/ISAOs.


Collaborators are companies that provide subject matter expertise as it relates to information technology and cybersecurity.

Get started

1. Connect to Stay Informed

2. Request a membership package

3. Member Events