Advancing cybersecurity posture through a comprehensive maturity program in the oil industry - Microsoft Source

Advancing cybersecurity posture through a comprehensive maturity program in the oil industry March 13, 2025 | CEE Multi-Country News Center Share on LinkedIn (opens new window) Share on Facebook (opens new window) Share on X (opens new window) In January 2025, Kazakhstan recorded 7.9 thousand cyberattacks — almost twice as many as the previous year. Considering global trends and the number of cyberattacks in Kazakhstan, the energy sector remains a potential target for cybercriminals. The rise of sophisticated cyber threats, with organizations facing up to 600 million cyberattacks per day worldwide, industries, including the energy sector are prioritising cybersecurity modernisation. Recognizing these challenges, Karachaganak Petroleum Operating B.V. (KPO) has taken a proactive approach to strengthening its cybersecurity posture, setting a benchmark in the industry. The frequency and complexity of cyberattacks targeting energy sector and other industries continue to grow. Threats such as ransomware, phishing, and data breaches highlight the need for comprehensive cybersecurity measures. To safeguard critical assets and comply with national and global cybersecurity standards, organizations must transition from reactive to proactive security measures, aligning with frameworks like NIST. In Kazakhstan, as in many other countries, legislation such as the Law “On Informatization” requires organizations to implement rigorous cybersecurity measures. Organizations are obliged to establish or utilize operational centres for information security before integrating with governmental systems. Additionally, frameworks like the NIST Cybersecurity Framework (CSF) provide a roadmap to achieving higher cybersecurity maturity levels, ensuring repeatable and proactive processes. Companies like Karachaganak Petroleum Operating B.V. (KPO) are leading the way by advancing cybersecurity practices and enhancing their resilience through strategic collaborations. As part of the Cybersecurity Maturity Program, KPO has developed a centralized Security Operations Centre (SOC) to enhance monitoring, threat detection, and incident response capabilities. The SOC in KPO ensures: Real-time monitoring: 100% of IT&T infrastructure is monitored. Automated detection and response: processing 70-100 alerts in real-time, significantly reducing manual intervention. Improved risk management: Vulnerabilities are identified and mitigated more efficiently, with the tasks that previously required up to three weeks now completed in a single day. “KPO has achieved a cybersecurity score of 60%, significantly surpassing the industry average of 45% (worldwide). This milestone reflects KPO’s dedication to adopting best practices and leveraging cutting-edge technologies to effectively address cybersecurity challenges,” said Nurzhan Zhumagaliyev – KPO Cyber Security Manager. “Through our partnership with Microsoft, we will continue to enhance our capabilities, leveraging AI and automation to stay ahead of emerging threats.” To build a more robust cybersecurity posture, KPO has integrated a suite of modern security tools, including Microsoft Sentinel, Defender, Intune, Purview, and Entra. These solutions provide advanced threat intelligence, endpoint security, identity protection, and data governance, enabling to respond proactively to cyber threats. “As cyber threats become increasingly frequent and sophisticated – ransomware attacks alone have risen 2.75 times in the past year – industries must prioritize proactive security measures,” said Sergey Leschenko, Director of Microsoft CIS. He also added: “Our collaboration with KPO demonstrates how advanced cybersecurity solutions can dramatically improve response times, automate threat detection, and minimize potential disruptions. By combining technology with strategic planning, organizations can build a robust cybersecurity framework that meets today’s challenges and prepares for tomorrow’s risks.” As the energy sector continues its digital transformation, adopting comprehensive and modern cybersecurity frameworks is no longer optional. KPO’s leadership in implementing proactive cybersecurity measures serves as a model for other organizations looking to enhance their security maturity. This collaboration exemplifies how technology providers can support organizations in navigating the cybersecurity challenges of a digital-first era. Industries, particularly those in critical sectors are encouraged to adopt similar frameworks, emphasizing proactive security measures and continuous monitoring to build resilience against evolving threats. Related Posts Microsoft’s 2025 Work Trend Index Report reveals the rise of the Frontier Firm, marking a new era of workforce dynamics Microsoft’s 2025 Work Trend Index Report reveals the rise of the Frontier Firm, marking a new era of workforce dynamics Microsoft’s 2025 Work Trend Index Report reveals the rise of the Frontier Firm, marking a new era of workforce dynamics 50 Years of Microsoft: Empowering AI-Driven Growth and Resilience in the Adriatic Region 50 Years of Microsoft: Empowering AI-Driven Growth and Resilience in the Baltics