by Paul Rostick
Pipeline leaks are bad for everyone. They can have catastrophic effects on the environment, on communities and a company's bottom line. Given a bad enough leak, you could lose your license to operate, lose a fortune in revenue, and even face jail time. No one wants leaks.
Pipeline companies invest considerable effort to prevent the occurrence of spills. Yet they still prepare as if they will have them. They focus not only on protection, but on detection and response as well. They regularly and extensively drill on handling spills. This is the exact same model recommended for cybersecurity. Do everything you can to prevent breaches, but act as if you will have them. Why? The truth is, breaches happen. And because they happen, effective detection time and response time mean the difference between a minor event and a catastrophe.