Glossary

TSA Security Directive SD02E Compliance

Compliance and Regulations

What is TSA Security Directive SD02E Compliance?

TSA Security Directive SD02E compliance refers to adherence with the cybersecurity mandates outlined in the U.S. Transportation Security Administration’s (TSA) Security Directive Pipeline-2021-02E, which applies to pipeline and liquefied natural gas (LNG) facility owners and operators. Issued under TSA’s regulatory authority over pipeline security, SD02E mandates specific cybersecurity performance goals and access control measures to protect critical transportation infrastructure from cyber threats.

Why is TSA Security Directive SD02E Compliance Important?

SD02E was developed in response to the growing threat of cyberattacks targeting critical energy infrastructure, including the Colonial Pipeline ransomware attack in 2021. The directive replaces earlier TSA guidance with enforceable requirements focused on risk-based cybersecurity, access control, incident response, and resilience.

For covered entities, SD02E requires:

  • Use of multi-factor authentication (MFA) for all remote access.
  • Elimination of shared and default credentials.
  • Implementation of network segmentation and role-based access.
  • Continuous monitoring and audit logging of all remote access sessions.
  • Proof of technical enforcement for least privilege, separation of duties, and incident detection.

Operators must not only implement these controls but also submit cybersecurity implementation plans to the TSA and be prepared for audits or inspections. Failure to comply may result in regulatory enforcement actions.

How Does Xona Help with TSA SD02E Compliance?

Xona supports TSA SD02E compliance by delivering secure, auditable, and policy-driven remote access to critical systems, without the use of VPNs or exposed credentials. Its hardened access gateway enforces:

  • Multi-factor authentication (MFA).
  • Credential injection to eliminate shared account usage.
  • Protocol isolation via browser-based session access.
  • Identity-, role- and time-based access controls.
  • Full session recording and immutable logging.

Xona also supports real-time supervision, session approval workflows, and seamless integration with SIEM and compliance systems enabling pipeline and transportation operators to meet SD02E technical requirements while maintaining operational continuity and safety.

Frequently Asked Questions

What is the purpose of TSA Security Directive Pipeline-2021-02E (SD02E)?

TSA SD02E was issued to establish mandatory cybersecurity requirements for critical pipeline, LNG facility, and other transportation operators in the United States. It aims to reduce the risk of cyberattacks by requiring operators to implement technical safeguards such as multi-factor authentication, audit logging, access segmentation, and incident response capabilities. The directive replaces earlier voluntary guidance and introduces enforceable mandates with compliance oversight from the TSA.

Who is required to comply with TSA SD02E?

Pipeline and liquefied natural gas (LNG) facility owners and operators that fall under the Transportation Security Administration’s oversight for critical infrastructure are required to comply. These organizations must submit detailed cybersecurity implementation plans, meet prescribed performance-based objectives, and be prepared for TSA inspections or audits.

What specific cybersecurity controls are mandated by TSA SD02E?

TSA SD02E mandates a range of technical and procedural controls, including: multi-factor authentication (MFA) for all remote access; the elimination of shared or default credentials; network segmentation; least privilege access enforcement; session logging and monitoring; and the ability to detect and respond to incidents in near real time. These controls must be both documented and technically enforced.

How does Xona help implement TSA SD02E’s remote access security requirements?

Xona directly addresses TSA SD02E requirements by providing secure, browser-based remote access with protocol isolation, eliminating the need for VPNs and jump servers. The platform enforces MFA, time- and role-based access controls, and credential injection to remove the use of shared credentials. Every session is fully logged and recorded, ensuring complete visibility and traceability for compliance reporting.

Can Xona provide audit evidence to support TSA SD02E compliance inspections?

Yes. Xona stores session logs and full video recordings in an immutable format, tied to individual user identities and actions. These records can be exported to SIEM, GRC, or TSA auditors as evidence of compliance with access control, logging, and monitoring requirements outlined in SD02E.

How does Xona support real-time monitoring and control of remote sessions as required by the directive?

Xona enables real-time supervision of active sessions, including live viewing, session control override, and immediate termination capabilities. This allows operators to maintain continuous oversight of vendor and internal user activity, fulfilling the directive’s expectation for proactive monitoring and rapid response to anomalous access behavior.

Keep Exploring

Featured image
Glossary
February, 2026
Remote Access Compliance
Read more
Featured image
Glossary
February, 2026
NIS2 Directive Compliance
Read more
Featured image
Glossary
February, 2026
Secure Patching and Update Access
Read more

XONA is a Secure Remote Access Built for OT and ICS

Request an Expert Walkthrough
 Secure access for the systems that keep the world running.
© Xona Systems, 2026
Cookie Policy
Privacy Policy
Disclosure Policy
Website Terms of Service
Terms & Conditions