OIL AND NATURAL GAS INFORMATION SHARING AND ANALYSIS CENTER

#FuelingCyberIntel

Protecting Critical Infrastructure

Malware. Data breaches. Insider threats. Cyber espionage. It’s not a question of if you will be attacked but when. In fiscal year 2016, ICS-CERT responded to 290 incidents with the energy sector accounting for 59 of those incidents. As cyber threats evolve, the oil and natural gas industry faces unique challenges with the increasingly interconnected delivery of services to a common consumer and supplier base.

To protect our nation’s critical infrastructure, the Oil and Natural Gas Information Sharing and Analysis Center (ONG-ISAC) was created in 2014 to provide shared intelligence on cyber incidents, threats, vulnerabilities, and best practices to enhance security in the industry.

ONG-ISAC Mission

ONG-ISAC serves as a central point of coordination and communication to aid in the protection of exploration and production, transportation, refining, and delivery systems of the ONG industry, through the analysis and sharing of trusted and timely cyber threat information, including vulnerability and threat activity specific to ICS and SCADA systems.
The mission of the ONG-ISAC is structured around four cornerstones:

Four Cornerstones

1
Autonomous submissions
2
Authentic
Information Sharing
3
Industry owned and operated
4
Protection from Freedom of Information Act (FOIA) disclosure and anti-trust violations

Facilitating information sharing for our members

The ONG-ISAC acts as a dynamic cybersecurity hub for members to communicate and coordinate against network and ICS cyber attacks. The ONG-ISAC enriches intelligence through analysis.

Get access to shared intelligence in near real-time, in a trusted and secure manner.

Confidentiality is essential in creating a secure and trusted environment. The ONG-ISAC employs the Traffic Light Protocol (TLP) for information sharing. Members have the option of sharing information either anonymously or with attribution. Only ONG-ISAC members receive information that is classified as TLP Green, Amber, and Red; non-members only receive information that is classified as TLP White.

Traffic Light Protocol for Sharing Information

Authorized information recipients

Red

Restricted to a defined group (e.g., only those present at a meeting). Information labeled “Red” should not be shared with anyone outside of the immediate group.

Amber

Confidential. This information can be shared with ONG-ISAC members.

Green

Information within this category can be shared with ONG-ISAC members, government and strategic partners. Information labeled “Green” should not be shared in public forums.

White

This information can be shared freely, and is subject to standard copyright rules.

Classification

Want to know more about our memberships?

Industry

Industry members are oil and natural gas companies.

Allied Partners

Trade and industry associations, academic institutions, research organizations and ISACs/ISAOs.

Collaborators

Collaborators are companies that provide subject matter expertise as it relates to information technology and cybersecurity.

Get started

1. Connect to Stay Informed

2. Request a membership package

3. Member Events