IADC Cybersecurity Committee
Mission Statement
To develop digital security guidelines for drilling assets that are built upon existing industry standards and best practices.
Goals
To develop easy-to-use, practically applicable and tailored cybersecurity guidelines for drilling assets.
Objectives
Review existing cybersecurity regulations, industry best practices and standards of relevance for industrial control systems and drilling assets. This process begins with clearly defining the approach for standards to follow, and subsequently moving to align with standards that can be practically applied to drilling assets.
Officers
Co-Chairs
Onshore
Darren Ruhr, Precision Drilling
Offshore
Robert Roell, Valaris
Vice Co-Chairs
Onshore
Ming Teo, Nabors
Offshore
Dominic Keller, Transocean
Staff Liaison
Jim Rocco, IADC
Join the Committee
Please contact the IADC Cybersecurity Committee.
Meetings are open to IADC members.
All Committees
Looking for a different IADC Committee?
Committee Structure
A member appointed by the Chairman of IADC will chair the IADC Cybersecurity Committee. The Committee Chairman may at his discretion appoint a reasonable number of Committee Vice-Chairmen to oversee specific disciplines or issues (e.g., onshore/offshore safety issues, environmental practices, specific regulatory issues, etc.)
General meetings are open to participants from all categories of IADC membership. The Chairman may invite non-members to attend when it furthers the interests of the Committee. At the discretion of the Chairman and IADC staff, the meeting or portions of the meeting may be exclusively reserved for drilling contractor members. Meetings will be held at such times and locations as may be selected by the Chairman with the advice of the Committee.
IADC Committee activities are governed by IADC’s Antitrust Policy and Guidelines. IADC Technical Committee meetings are not open to the Press.
Meeting Minutes
| Date | Function | Location |
|---|---|---|
| 2021 | ||
| 25 February 2021 | Cybersecurity Committee Meeting | Virtual, Online only |
| 2020 | ||
| 15 December 2020 | Cybersecurity Committee Meeting | Virtual, Online only |
| 2019 | ||
| 12 December 2019 | Cybersecurity Committee Meeting | Houston, TX |
| 25 April 2019 | Cybersecurity Committee Meeting | Stavanger, Norway |
| 2018 | ||
| 11 October 2018 | Cybersecurity Committee Meeting | Houston, TX, USA |
| 9 August 2018 | Cybersecurity Committee Meeting | Houston, TX, USA |
| 14 June 2018 | Cybersecurity Committee Workshop | Houston, TX, USA |
| 12 April 2018 | Cybersecurity Committee Workshop | Stavanger, Norway |
| 15 February 2018 | Cybersecurity Subcommittee Meeting | Houston, TX, USA |
| 2017 | ||
| 16 November 2017 | Cybersecurity Subcommittee Meeting | Houston, TX, USA |
| 13 July 2017 | Cybersecurity Subcommittee Meeting | Houston, TX, USA |
| 11 May 2017 | Cybersecurity Subcommittee Meeting | Houston, TX, USA |
| 12-13 January 2017 | Cybersecurity Subcommittee Meeting | Houston, TX, USA |
| 2016 | ||
| 15 November 2016 | Cybersecurity Subcommittee Meeting | Houston, TX, USA |
| 1 September 2016 | Cybersecurity Subcommittee Meeting | Houston, TX, USA |
| 7 July 2016 | Cybersecurity Subcommittee Meeting | Houston, TX, USA |
| 5 May 2016 | Cybersecurity Subcommittee Meeting | Houston, TX, USA |
| 9 March 2016 | Cybersecurity Subcommittee Meeting | Houston, TX, USA |
| 21 January 2016 | Cybersecurity Subcommittee Meeting | Houston, TX, USA |
| 2015 | ||
| 3 December 2015 | ART DCS Cybersecurity Task Group | Houston, TX, USA |
| 4 September 2015 | ART DCS Cybersecurity Task Group | Houston, TX, USA |
| 6 August 2015 | ART DCS Cybersecurity Task Group | Houston, TX, USA |
| 30 July 2015 | ART DCS Cybersecurity Task Group | Houston, TX, USA |
| 25 June 2015 | ART DCS Cybersecurity Task Group | Houston, TX, USA |
| 30 April 2015 | ART DCS Cybersecurity Task Group | Houston, TX, USA |
| 2 April 2015 | ART DCS Cybersecurity Task Group | Houston, TX, USA |
| 19 March 2015 | ART DCS Cybersecurity Task Group | Houston, TX, USA |
| 19 February 2015 | ART DCS Cybersecurity Task Group | Houston, TX, USA |
| 22 January 2015 | ART DCS Cybersecurity Task Group | Houston, TX, USA |
| 2014 | ||
| 20 November 2014 | ART DCS Cybersecurity Task Group | Houston, TX, USA |
Meeting Schedule
| Date | Function | Location |
|---|---|---|
| 27 February 2024 | Committee Meeting | IADC HQ & Virtual |
| 30 May 2024 | Committee Meeting | IADC HQ & Virtual |
| 29 August 2024 | Committee Meeting | IADC HQ & Virtual |
| 21 November 2024 | Committee Meeting | IADC HQ & Virtual |
Committee Meetings Policy
General meetings are open to participants from all categories of IADC membership. The Chairman may invite non-members to attend when it furthers the interests of the Committee. At the discretion of the Chairman and IADC staff, the meeting or portions of the meeting may be exclusively reserved for drilling contractor members. Meetings will be held at such times and locations as may be selected by the Chairman with the advice of the Committee.
All dates and times are subject to change.
Resources & Links
This page contains lists of all available resources, documents, videos for the Cybersecurity Committee. These may include best practices, guidelines, and/or special reports, as well as documents on topics such as onshore/offshore safety issues, environmental practices, specific regulatory issues and more. Also included is a section for links to useful websites.
Resources
| Resource | Resource Link / File |
|---|---|
| IADC Cybersecurity Overview – July 2017 | |
| IADC ART Cybersecurity Subcommittee Poster | |
| The IADC Cybersecurity Risk Assessment Support Tool | REQUEST FORM |
| Bulletin | Maritime Cyber Bulletin 003-16 |
| Bulletin | Maritime Cyber Bulletin 004-16 |
| Introduction to Cybersecurity Framework | |
| How are Cybersecurity Standards & Technologies Relevent to Drilling Control Systems | |
| IADC Guidelines for Assessing and Managing Cybersecurity Risks to Drilling Assets | Buy The eBook |
| Take the Guesswork Out of the NIST CSF | |
| National Cyber Awareness System: Symantec Releases Security Updates – 7 June, 2016 | URL |
Useful Links
- National Cyber Awareness System: Symantec Releases Security Updates – 7 June, 2016
- NIST Cybersecurity Framework website: https://www.nist.gov/cyberframework
- Cybersecurity Framework v1.0: https://www.nist.gov/document-3766
- Draft Cybersecurity Framework v1.1: https://www.nist.gov/cyberframework/draft-version-11
- NCCoE announcement: https://nccoe.nist.gov/news/new-cybersecurity-framework-profile-help-ensure-safe-transfer-hazardous-liquids-ports
- Oil and Natural Gas Subsector Cybersecurity Capability Maturity Model (ONG-C2M2): https://energy.gov/oe/cybersecurity-capability-maturity-model-c2m2-program/oil-and-natural-gas-subsector-cybersecurity
- USCG announcement of the Maritime Bulk Liquids Transfer Profile: http://mariners.coastguard.dodlive.mil/2016/11/10/release-maritime-bulk-liquids-transfer-cybersecurity-framework-profile/
- Direct link to MBLT Profile: http://www.uscg.mil/hq/cg5/cg544/docs/Maritime_BLT_CSF.pdf
IADC Guidelines for Baseline Cybersecurity for Drilling Assets
Provides baseline guidance on cybersecurity for oil and gas drilling assets. These guidelines represent best practice for cybersecurity for drilling assets and were developed collaboratively by drilling contractors, operators, vendors, and cybersecurity experts. 25 pages. Copyright © IADC 2018. All rights reserved.
IADC Guidelines for Assessing and Managing Cybersecurity Risks to Drilling Assets
Cyber attacks on drilling control systems can cause enormous harm to people, the environment and equipment. These guidelines, the only guidance specifically for drilling operations, draw from international standards to provide a means to assess the risk to drilling rigs from cyber attacks. 25 pages. Copyright © IADC. All Rights reserved.
IADC provides web links as a member service. IADC does not warranty or endorse the accuracy or reliability of any of the information, content, or advertisements contained on websites linked to www.iadc.org or any of its subsidiary pages.
Committee Initiatives
- With appointment of a new Cyber Guidelines Chair, reassert work towards progressing this objective.
- Begin liaising with IOGP on cyber considerations being undertaken by its Operator members.
- Further explore implications of cybersecurity concerns as the digitalization focus continues to take hold for upstream interests.