Pembina Pipeline Corporation operates approximately 10,000 kilometers of pipeline infrastructure across North America, moving hydrocarbon liquids and natural gas from Western Canada to downstream markets. Founded in 1954 and headquartered in Calgary, the company manages critical midstream assets including gas gathering, processing, and NGL logistics, with thousands of employees distributed across Canada and the United States.
The operational footprint spans multiple threat surfaces. Pembina's infrastructure includes SCADA systems controlling remote pipeline segments, process control networks at gathering and processing facilities, corporate IT systems managing logistics and trading operations, and increasingly, cloud-based platforms supporting midstream services and energy marketing functions. Recent acquisitions - Veresen Inc. in 2017 and Kinder Morgan Canada in 2019 - expanded the attack surface and integration complexity. Active projects like Cedar LNG (with the Haisla Nation) and the Alberta Carbon Grid (with TC Energy) introduce additional technical domains requiring security governance.
Pipeline operators face specific threat models: physical safety interlock bypass attempts, denial-of-service attacks against SCADA interfaces, credential compromise targeting remote access points, and supply chain risks from vendors with access to critical control systems. Regulatory compliance - including CSA and pipeline-specific security frameworks - runs parallel to operational resilience requirements where system downtime directly impacts commodity flows and contractual obligations.