Calendar An icon of a desk calendar. Cancel An icon of a circle with a diagonal line across. Caret An icon of a block arrow pointing to the right. Email An icon of a paper envelope. Facebook An icon of the Facebook "f" mark. Google An icon of the Google "G" mark. Linked In An icon of the Linked In "in" mark. Logout An icon representing logout. Profile An icon that resembles human head and shoulders. Telephone An icon of a traditional telephone receiver. Tick An icon of a tick mark. Is Public An icon of a human eye and eyelashes. Is Not Public An icon of a human eye and eyelashes with a diagonal line through it. Pause Icon A two-lined pause icon for stopping interactions. Quote Mark A opening quote mark. Quote Mark A closing quote mark. Arrow An icon of an arrow. Folder An icon of a paper folder. Breaking An icon of an exclamation mark on a circular background. Camera An icon of a digital camera. Caret An icon of a caret arrow. Clock An icon of a clock face. Close An icon of the an X shape. Close Icon An icon used to represent where to interact to collapse or dismiss a component Comment An icon of a speech bubble. Comments An icon of a speech bubble, denoting user comments. Ellipsis An icon of 3 horizontal dots. Envelope An icon of a paper envelope. Facebook An icon of a facebook f logo. Camera An icon of a digital camera. Home An icon of a house. Instagram An icon of the Instagram logo. LinkedIn An icon of the LinkedIn logo. Magnifying Glass An icon of a magnifying glass. Search Icon A magnifying glass icon that is used to represent the function of searching. Menu An icon of 3 horizontal lines. Hamburger Menu Icon An icon used to represent a collapsed menu. Next An icon of an arrow pointing to the right. Notice An explanation mark centred inside a circle. Previous An icon of an arrow pointing to the left. Rating An icon of a star. Tag An icon of a tag. Twitter An icon of the Twitter logo. Video Camera An icon of a video camera shape. Speech Bubble Icon A icon displaying a speech bubble WhatsApp An icon of the WhatsApp logo. Information An icon of an information logo. Plus A mathematical 'plus' symbol. Duration An icon indicating Time. Success Tick An icon of a green tick. Success Tick Timeout An icon of a greyed out success tick. Loading Spinner An icon of a loading spinner.

Saudi Aramco says ‘everybody’ will eventually be hit by cyberattacks

Saudi Aramco has reported pre-tax income fell by 44% in the third quarter, as low prices hit revenues, but the company sees early signs of a recovery.
Saudi Aramco news

The world’s most profitable company told Offshore Europe delegates last week that “everybody” will eventually be hit by a cyberattack.

Raed Al-Shaikh, who heads up Saudi Aramco’s cybersecurity division for oil and gas operations, highlighted the “exponential” growth in the threat in recent years.

Aramco, one of the world’s largest oil companies which recorded profits of £38billion in the first half of 2019, has been hit by high profile attacks in recent years.

In 2012, it was reported thousands of computers were partially wiped or destroyed by an attack, with another in 2017 hitting a joint venture company between Saudi Aramco and Dow Chemical.

Mr Al-Sheikh leads the information security division at Aramco’s exploration and production engineering centre (Expec) which overseas its upstream operations.

He highlighted stringent measures by the company to avoid any more attacks, and outlined the scale of the problem for the oil and gas sector.

He said: “I have bad news for you: everybody will be hacked. That is the way we see it.

“If you’re not hacked already, you will be hacked. There is a reason for that – the advancement of threat actors.

“In the 80s, most of the people doing viruses were just probably doing so for the fun of it or were just students or enthusiast people trying to make a virus or programme something.

“But now it is being developed to be more damaging, it is becoming more lucrative for some organisations. It’s growing exponentially in terms of the danger or the damage it can do.”

Raed Al-Shaikh (left) with Emilie Hudson of BP and Mario Chiock, fellow for IT Security at Schlumberger.

Mr Al-Sheikh said its employees are the “first line of defence”, with greater steps being taken to give every worker an understanding of cyber security and threats such as phishing emails.

However the panel session also described the need for more professionals in this field to be recruited into the oil and gas sector.

Emilie Hudson is the principle industrial control systems security officer at BP, who said that it is important that both operators and vendors work to increase their competence in this arena.

She added: “Bringing cyber security into the procurement space is not an accident. Having cybersecurity professionals with a seat at the table that is the purchasing aspect is really becoming much more important.

“It is starting to become more obvious that having cyber security, or a greater competence in cyber security, on the part of both parties is serving us much better

“It really is about raising the level of competence across the industry. Having an engineer who has a stronger foundation in cyber security principles, or at least knows who to ask.

“What I observe in this system is that, frankly, the pipeline of resources is inadequate.

“There is no doubt that the need for recruiting and professional development does not decrease, this is a time for increased opportunity.”

Recommended for you

More from Energy Voice

Latest Posts