About

ONG-ISAC Mission

ONG-ISAC serves as a central point of coordination and communication to aid in the protection of exploration and production, transportation, refining, and delivery systems of the ONG industry, through the analysis and sharing of trusted and timely cyber threat information, including vulnerability and threat activity specific to ICS and SCADA systems.

ONG-ISAC Leadership

 

Executive Director

Angela Haun

Appointed as ONG-ISAC Executive Director in September 2018, Angela is a retired FBI Special Agent with extensive experience in cybersecurity and protecting critical assets. Since joining the ONG-ISAC, she has expanded the ONG-ISAC’s membership with a Strategic Partnership Pilot Program, bringing new organizations, expertise, resources and funding to support the ISAC’s efforts. In addition, Angela has been a subject matter expert speaker, organizer and participant in numerous energy-related conferences, briefings, exercises, meetings, webinars and other events. Ms. Haun is actively pursuing upgraded technologies and additional benefits for ONG-ISAC member analysts and executives.

Chairman’s Message

January 2022

“It was the best of times, it was the worst of times, it was the age of wisdom, it was the age of foolishness, it was the epoch of belief, it was the epoch of incredulity, it was the season of light, it was the season of darkness, it was the spring of hope, it was the winter of despair.”

You would think Charles Dickens was writing about this past year. 2020 and COVID was quite a challenge, but it didn’t stop there. Ransomware was widespread and hit close to home. The Colonial Pipeline incident created a seismic shift for critical infrastructure and our industry in particular. Government attention was sharply focused on oil & gas, especially after 90% of the gas stations in the D.C. area ran out of gas. TSA issued Security Directives for the pipeline industry. Several oil & gas companies were newly included under Section 9 of Executive Order 13636 – the most critical of critical infrastructure “where a cybersecurity incident could reasonably result in catastrophic regional or national effects on public health or safety, economic security, or national security.” In addition to the criminal threat, geopolitical concerns have driven heightened cybersecurity awareness for critical infrastructure, with tensions around Ukraine rising higher each day (and hopefully not boiling over by the time you read this).

With escalating tensions and increased attention on oil & gas cyber defense, I am glad we have the ONG-ISAC team that we can reach out to with questions and concerns. I appreciate not “going it alone”, even if only to know that I am not the only one out there dealing with these cybersecurity issues.

Thank you to all our members for the information you have shared and the contributions you have made. Thank you to our ONG-ISAC staff, especially our SOC analysts, Hassan and Jacob, for all their hard work. Thank you, Angela, for leading the ONG-ISAC charge and driving information sharing. Finally, thank you to all of the Board members, current and past, who put us on the threat information sharing track and made sure we didn’t go off the rails.

Keep Calm and Share On.

Meet the Board of Directors

The board of directors and the officers are responsible for the stewardship of the corporation and are elected to ensure the ONG-ISAC has the critical capabilities needed to achieve its objectives.

Executive of Membership Development image

Angelique Grado

Chair

TechnipFMC

Angelique Grado is the VP, Chief Information Security Officer (CISO) at TechnipFMC, a global leader in energy projects, technologies, systems, and services in subsea, onshore, and energy transition leading the journey to a low-carbon society. Previously Angelique was the CISO of MRC Global Inc., a global industrial distributor of pipe, valves, fittings and related products and services to the energy industry and No. 6 on Industrial Distribution’s Big 50 List. Angelique Grado has over 20 years of information security experience, with 12 years of that time focused on information protection in the U.S. armed forces. Angelique moved to Houston in the early 2000s to be closer to her husband’s family, where she has helped local companies improve their security posture. In addition, she was the volunteer founder of Houston-based Infragard Oil & Gas Special Interest Group (SIG) with the FBI and has served on the board of the Gulf Coast Chapter of the ISSA. Angelique was handpicked to represent the Armed Forces on the President’s National Infrastructure Protection Center’s team and was part of a force modernization effort creating secure, high-speed, network centric military operations. She has both supported White House Communications for an international Presidential (POTUS), Secretary of State and Secretary of Defense (SECDEF) visit and broadcast presidential speech from a US Air Force site as well as was the Chief Information Officer of the first US Air Force military exercise group in former eastern-bloc Poland for a joint operations exercise providing both command center and tactical field communications. She speaks at numerous presentations and participates on panels concerning information security, professionalization of the security industry career path and futurizing industrial and business technologies, including IOT and security. She enjoys time off from work with her amazingly supportive family on their small property with their 3 crazy horses and multitudes of flora and fauna.

Executive of Membership Development image

Derek Rude

Vice-Chair

Weatherford

Derek Rude is the Director of IT Security for Weatherford. With more than 20 years of security experience, Derek is responsible for information security strategy, architecture, operations, and incident response. He is an expert in incident response and recovery implementing successful strategies and tactics against both APT and Hacktivists. He has served as a co-chair of the Evanta Houston CISO Summit since its inception. He has also participated in numerous customer advisory boards including FireEye and Microsoft. Prior to this role, Derek was the Director of Information Security for Koch Business Solutions, Senior Manager of IT Security for Halliburton, Application Security Program Manager at Hewlett Packard/Compaq, and Senior Consultant in Information Risk Management at KPMG. Derek also served as a Surface Warfare Officer and Information Professional Officer in the United States Navy where he was a consumer of intelligence, provided secure communications, and secured Top Secret Cryptography. Derek is passionate about learning and has attended several SANS Courses including Threat Intelligence, ICS Active Defense, and Advanced Incident Response, Threat Hunting, and Digital Forensics. He has also received three degrees from Texas A&M University: MBA (2011), MS Management Information Systems (1999), and BS Psychology (1993).

Executive of Membership Development image

Mary Rose Martinez

Treasurer

Marathon Petroleum

Mary Rose Martinez is the vice president, chief information security officer for Marathon Petroleum Corporation. She is responsible for cybersecurity strategy, operations, and risk management, providing thought leadership and working in close alignment with enterprise leadership. With over 30 years of experience in the oil and gas industry, Mary Rose has held various leadership and strategic roles across IT, software R&D, and marketing. She serves on a number of advisory boards, has contributed to or been featured in several articles and publications, is a public speaker, and was named one of Houston’s Women Who Mean Business. Mary Rose holds an executive master in cybersecurity degree from Brown University, a master of computer science degree from Rice University, and undergraduate degrees in both computer science and mathematics.

Executive of Membership Development image

John Driggers

Secretary

SLB

John L. Driggers possesses over 23 years of experience in Oil Field operations, IT, Security, and Risk. Prior to his current role as SLB VP, CyberSecurity John was the Cyber Security Operations Manager responsible for delivering the Next Generation Security Operations Center. John was one of the founding members of the SLB IT Security group, helping to define the standards and policies as the company grew its reliance on connected IT systems. In this role he helped create one of the first sandbox networks, designed to safely observe and monitor the actions of malicious software. John moved from IT Security research into IT Security Operations, and was responsible for leading the IT Security program integrating one of SLB’s largest global acquisitions. Following the successful integration, he became the IT Security Operations manager for the newly merged company. John later moved to the position of Global IT Security Operations Manager for SLB. John’s next role was as SLB’s Global Network Operations Manager, responsible for the terrestrial connectivity of over 1,100 physical sites across 85 countries. His security experience helped shape the direction of the network and ensuring that security was integrated into the core design. This role expanded over time to include the global VSAT network of 1500 mobile sites, and the move to a distributed security framework comprising next generation firewalls. In 2013, John returned to the US to join the SLB IT Transformation project, responsible for the SAP Infrastructure, Security, and BASIS teams. In this role, his team was responsible for the deployment, support, and security of one of the world’s largest SAP/R3 HANA projects. John’s current role of VP, Cyber Security is again part of the overall SLB Digital Transformation. SLB has grown the Cyber Security program to reflect the evolution of the products and services that the company delivers, and the role that Digital plays in the overall strategy. The Cyber Security group in SLB is now responsible for the comprehensive security stance of the company, ranging from the Digital Software and Services offerings, the traditional IT landscape, and the IIoT products deployed to the wellsite. A key part of John’s role includes the expansion and evolution of the next generation intelligence, detection and response capabilities of SLB . John has been a member of SLB ‘s Incident Response Team since 2000, and has a SANS GSEC certification.

Executive of Membership Development image

Stuart Wagner

Director

Enterprise Products

Stuart served as a Board Member for over 5 years and became Chairman in June 2018. He has attended the FBI CISO Academy, has served as President of the award-winning South Texas Chapter of the Information Systems Security Association (ISSA), and is a member of ISACA and InfraGard. Stuart has developed and led information security programs for multi-billion dollar companies for the past twelve years and is currently the Sr. Director, IT Security and Compliance for one of the largest publicly-traded energy partnerships. His experience includes information security policy development, creating security awareness campaigns, security operations, leading incident response teams, and setting information security strategy.

Executive of Membership Development image

Octavio Herrera

Director

Occidental Petroleum Corporation

Octavio Herrera, a cum laude graduate from Norwich’s University MSIA program and proud CISSP member has held a number of information security positions within Fortune 500 companies. During his 25+ years career he has led the regulatory compliance program at Alcoa’s largest business unit, managed the IT Security program for American Family Life Assurance Company of Columbus (AFLAC), served as Information Security Officer (CISO) for the Houston Independent School district – the seventh largest district in the nation and the largest in Texas – an since 2013, he leads the cyber security practice for Occidental Petroleum Corporation (OXY). Mr. Herrera has been honored as one of the “Top 40 Hispanics under 40” by Hispanic Engineer & Information Technology magazine and featured in Fortune Magazine’s March 2009 article, “How to Get a Job”. During his off time, Mr. Herrera is an avid tennis player and enjoys fostering Dogs for “Rocio’s Rescues”, a non-profit animal shelter dedicated to re-locating Texas dog to their forever homes in northern states.

Executive of Membership Development image

Allan Cockriel

Director

Shell International

Allan Cockriel is Vice President & CIO Global Functions & Chief Information Security Officer for Shell since July 2020 and is part of the IDT Executive Leadership Team. In his role Allan leads the IDT organization to ensure maximum business value delivery through complex digital transformations across all Corporate Functions; and oversees the continuous improvement of the Information Risk and Cyber Security posture for Shell. Allan is an executive IT leader with over 19 years of IT and business transformation experience. He has built and lead diverse global organizations to deliver business productivity, complex digital transformations, embedding of IT controls and cyber security rigor. Prior to joining Shell, Allan was Group CIO of Petrofac for two years. Before that Allan spent 14 years with General Electric and had a diverse career in financial, operational, and senior IT leadership roles in Switzerland, United Kingdom, United States, India, and Angola. Allan, who holds dual US/UK nationality, has degrees in Management Information Systems, Corporate Finance, and Risk Management from the University of Minnesota – Carlson School of Management. He is married to Fara, and they have two children. Outside work, he enjoys cooking, travel, hiking, and listening to TED talks.

Executive of Membership Development image

Chris Lukas

Director

Chevron Corporation

Christopher Lukas is the general manager, Information Risk Strategy & Management (CISO), a position he assumed in October 2020. Christopher leads a team responsible for Chevron’s overall cyber security efforts that secure and protect information and assets of Chevron while ensuring overall cyber resiliency and data privacy. He is a member of Chevron’s IT Leadership Team, which is responsible for executing Chevron’s digital and technology strategies. Prior to his current role, Christopher was the general manager for Downstream and Chemicals IT. His responsibilities included setting and executing all Downstream and Chemicals IT strategies for the Manufacturing, Products, Lubricants and Oronite business units. He also served as the IT Regional Manager for Chevron’s North America Exploration and Production Operating Company. In this role, he was responsible for the information technology needs of five business units focused on exploration and production of heavy oil, unconventional and liquefied natural gas (LNG) on land and in the Gulf of Mexico. Christopher joined Chevron in 2013 as the manager, Cyber Threat Analysis and Monitoring in Chevron’s Information Technology Company where he was responsible for establishing Cyber Intelligence Centers in Houston and Singapore which conduct worldwide monitoring, response, and intelligence operations. Prior to joining Chevron, Christopher was Chief, Cyber Threat Analysis Division for the U.S. Department of State’s Bureau of Diplomatic Security for more than 10 years. He was responsible for leading a team of special agents, intelligence analysts and network security experts in conducting intelligence analysis, network monitoring, and predictive analysis to protect the U.S. Department of State’s global networks. During his tenure at the Department of State, Christopher was honored with the Benjamin Franklin Award, Meritorious Honor Medal, and Federal Computer Week’s Rising Star Award. In addition, he, and his team were awarded the National Security Agency’s (NSA) Frank B. Rowlett Award for their significant contribution to the protection of national security systems and the SANS Cybersecurity Innovation Award. An 11-year U.S. Navy veteran, Christopher has extensive expertise in signals intelligence, information warfare, and cyber counterintelligence operations. He became a certified adjunct instructor for the National Cryptologic School at NSA and is the recipient of several service medals and awards for his service while in the U.S. Navy. He is a graduate of the executive program at Carnegie Mellon University – Heinz College for Chief Information Security Officer. A native of Grafton, Wisconsin, he resides in Danville, California with his wife and two children.

Executive of Membership Development image

John Mowery

Director

Motiva

John is currently the Chief Information Security Officer (CISO) and responsible for IT and OT/ICS security, governance and risk functions at Motiva. John has over 30 years of IT and security experience with many of those years in the Oil & Gas industry. Before coming to Motiva, John held various leadership roles, including Manager of IT Security/CISO for ConocoPhillips; and Executive Consultant, Director, and CTO in the consulting and security product industries. John has helped implement security programs for large dot-coms, global energy companies, defense contractors, various international government agencies, and many others. John is a veteran of the US Army and holds a B.S. in Cybersecurity and Information Assurance as well as multiple industry-leading security certifications.

Committees

With the participation and engagement of our members and volunteer staff provided by member companies, the ONG-ISAC can continue to create value for its members and the entire oil and natural gas sector. While there are many ways to volunteer and help the ONG-ISAC succeed, our committee member positions require individuals who are committed to the protection of the energy sector and to making the oil and natural gas industry stronger and safer.

The Membership Committee’s primary responsibility is to evaluate all member applications. Each membership request goes through a due diligence process to ensure eligibility according to bylaws and to determine membership level.

Committee Chair: Derek Rude

Committee image

The Benefits Committee helps the Board to ensure the benefits provided by ONG-ISAC will create value for the members and the entire oil and natural gas sector. The Benefits Committee is comprised of member companies’ representatives who meet to provide input on benefit programs, vendor relationships and other issues affecting the ONG-ISAC.

Committee Chair: John Mowery

Committee image

The Information Sharing Committee works with members and strategic partners to build relationships and identify areas where more effective information sharing can be utilized. In addition, the Information Sharing Committee sets the scope for types of threats on which the organization should focus its research and analysis efforts. When necessary, the Information Sharing Committee serves as a key resource for the ONG-ISAC’s staff when coordinating actions during a crisis or incident affecting members.

Committee Chair: Octavio Herrera

Committee image

The Operation Technology Task Force (OT Task Force) is dedicated to solving cyber security challenges in the operational technology space in the safest, most efficient manner.  The roundtable discussions provide an opportunity to connect and exchange ideas with peers in the oil and gas industry on various topics, including patching ICS systems, threat actors targeting OT, talent recruitment, and more.

Vulnerability Management Working Group launched in April 2022 for members to connect with their peers who focus on vulnerability and risk management for their companies. Their objective is to learn best practices from each other, share successful measures for identifying and reducing risk, and alert each other to emerging threats and vulnerabilities, as well as mitigation strategies.

Committee image