50 ALRAQABA . ISSUE 20 Safeguarding Critical Infrastructure: A Deep Dive into Cybersecurity Audits in the Oil and Gas Sector Focus on Kuwaiti Oil and Gas Sector Fatimah Nabil Senior Internal Auditor, Internal Audit Department Introduction: The oil and gas industry plays a pivotal role in the global energy supply, and in Kuwait, it is considered the main source of income, making it an attractive target for cyber threats. The oil and gas industry has the power to control the national economy in Kuwait; therefore, no threat is considered minimal in this industry. As technology advances, so do the risks associated with cyber-attacks; the more the industry relies upon using advanced technologies in mid-stream, upstream, and downstream activities, the higher the cyber risk. In this article, we explore the significance of cybersecurity audits (CSA) in the oil and gas industry and how they contribute to safeguarding critical infrastructure and national security. The Nexus of Cybersecurity in the oil and gas industry in Kuwait 1. Understanding the Threat Landscape: The oil and gas sector faces a diverse range of cyber threats, including ransomware, espionage, and sabotage. Lately, ransomware attacks have become the most common threats. Attackers target critical infrastructure to disrupt operations, compromise safety, and extract valuable information, especially sensitive personal information. A cybersecurity audit serves as a proactive measure to identify vulnerabilities and assess the overall security posture. Computers Audit and
RkJQdWJsaXNoZXIy Mjk0NA==