World Events and Bulk Plant Security

According to the Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA), there are currently no specific cyber or physical threats to critical infrastructure related to recent military operations in Iran. However, now is an appropriate time to review and reinforce your security practices.

Work closely with your IT department or service provider to ensure software is updated and cybersecurity protections are current. Many of CISA’s recommendations can be implemented directly through your IT partner. Employee training is equally important. Ensure staff can recognize phishing emails, suspicious links, and social engineering attempts, and understand how to report them promptly.

Remain vigilant about physical security at your locations. Suspicious activity may include individuals photographing bulk plants, attempting to access restricted areas, asking detailed questions about operations or vehicles, or flying drones overhead. Reporting suspicious activity is a key part of an effective security plan.

If you observe suspicious activity:

• Follow your company’s security plan.
• If appropriate, attempt to communicate directly.
• If communication is not possible, document details such as vehicle make, model, color, and license plate, and notify local law enforcement.
• Notify your state association.

If a drone is flying over your property, the FAA advises:

• Attempt to identify and communicate with the operator, if possible.
• If the drone appears threatening or the operator cannot be identified, contact local law enforcement or the FAA.
• Do not attempt to shoot down a drone; doing so is dangerous and illegal.

If you see something, say something. Review your security plans with employees and partners regularly. If you have questions about this or other security topics, contact NPGA’s Senior Manager for State Association Relations, Eric Sears, at [email protected].