TY - GEN
T1 - Cybersecurity Risk Management Frameworks in the Oil and Gas Sector
T2 - Future of Information and Communication Conference 2022
AU - Imran, Huma
AU - Salama, Mohamed
AU - Turner, Colin
AU - Fattah, Sherif
N1 - Publisher Copyright:
© 2022, The Author(s), under exclusive license to Springer Nature Switzerland AG.
PY - 2022/3/12
Y1 - 2022/3/12
N2 - Oil and gas industry is an important part of the country’s critical infrastructure that employs sophisticated equipment, tools, assets and specialized interdisciplinary knowledge. In order to improve productivity and efficiency, there is an increasing trend in the industry towards digital transformation. This, as a result has increased cyber vulnerabilities and threats in the oil and gas industry. Fear of cyberattacks is particularly high in oil and gas organization as they are part of critical infrastructure. They face a wide spectrum of threats due to the complex nature of their value chain. Different frameworks have been developed in different sector to address the cyber risk management. But unfortunately, enough research hasn’t been done in the oil and gas sector. To address this gap, a rigorous and methodical approach was applied to conduct a systematic literature review of original frameworks, peer reviewed articles, book chapters and conference papers related to 25 most commonly used frameworks, after performing a thorough search in the four major databases such as AAPG, Web of Science, SCOPUS, and ProQuest. The main aim of this paper is to conduct systematic literature review on the cybersecurity risk management frameworks available in literature that guides the practice of cyber risk management in the oil and gas projects. The findings of this paper illuminates key research gaps, strengths, and limitations of these frameworks, and help to identify directions for further research.
AB - Oil and gas industry is an important part of the country’s critical infrastructure that employs sophisticated equipment, tools, assets and specialized interdisciplinary knowledge. In order to improve productivity and efficiency, there is an increasing trend in the industry towards digital transformation. This, as a result has increased cyber vulnerabilities and threats in the oil and gas industry. Fear of cyberattacks is particularly high in oil and gas organization as they are part of critical infrastructure. They face a wide spectrum of threats due to the complex nature of their value chain. Different frameworks have been developed in different sector to address the cyber risk management. But unfortunately, enough research hasn’t been done in the oil and gas sector. To address this gap, a rigorous and methodical approach was applied to conduct a systematic literature review of original frameworks, peer reviewed articles, book chapters and conference papers related to 25 most commonly used frameworks, after performing a thorough search in the four major databases such as AAPG, Web of Science, SCOPUS, and ProQuest. The main aim of this paper is to conduct systematic literature review on the cybersecurity risk management frameworks available in literature that guides the practice of cyber risk management in the oil and gas projects. The findings of this paper illuminates key research gaps, strengths, and limitations of these frameworks, and help to identify directions for further research.
KW - Cyber risk management
KW - Cybersecurity
KW - Cybersecurity framework
KW - Digitization
KW - Oil and Gas
UR - http://www.scopus.com/inward/record.url?scp=85126961142&partnerID=8YFLogxK
U2 - 10.1007/978-3-030-98015-3_59
DO - 10.1007/978-3-030-98015-3_59
M3 - Conference contribution
AN - SCOPUS:85126961142
SN - 9783030980146
T3 - Lecture Notes in Networks and Systems
SP - 871
EP - 894
BT - Advances in Information and Communication. FICC 2022
A2 - Arai, Kohei
PB - Springer
Y2 - 3 March 2022 through 4 March 2022
ER -