Getting Ahead of Risks: What's Next in Cybersecurity –

by Railway-News
15 Dec 2022
Cyber Security
Data Transmission

Suppliers Icomera
Preparing for the cyber threats of tomorrow requires deliberate action by passenger (and freight) railroads to improve the resiliency of assets.
On October 18, 2022, the US Transportation Security Administration (TSA) issued Security Directive 1580-21-01A, intended to make the nation’s’ railroads more secure and resilient to cyber threats by implementing measures aimed at identifying and resolving network and/or system vulnerabilities.
Rail Cybersecurity
I recently had the opportunity to address the Commuter Rail Coalition at their inaugural summit, informing other industry leaders on the state of safety and cybersecurity best practices.
The reality of the industry remains that most existing, onboard and network-based technologies are antiquated and not designed with security in mind. Disparate operating systems, poor authentication protocols, and manual port-based updates are a handful of the vulnerabilities operators face in managing their video surveillance, passenger information, and other mission-critical systems.
“All industries need to take the risks of cyber security seriously to avoid or minimize significant cost and disruption. The Commuter Rail Coalition helped bring attention to this priority to leaders in its inaugural Summit. Being attacked is no longer considered an “if” but “when” so leaders need to prepare their organizations both to prevent intrusion and be ready to respond in the unfortunate situation where an attack is successful.
“As industries, like commuter rail, take cyber security seriously and learn from each other, the incentive for bad actors to target them is diminished and the investment will successfully create a shield of protection and deflect attention to reduce the likelihood of attacks.”
Rail Cybersecurity
As the industry moves towards digitalization, it is imperative that cybersecurity serves as a fundamental aspect of the design. Without the right design in place, a single vulnerability can be exploited to put other systems – and passengers – at risk.
Mitigating these risks requires operators to be ready to detect, respond, and recover from a cyber-attack appropriately.
With the US Department for Homeland Security about to publish a second cyber directive for rail, the industry must do more to protect against and prevent cyber-attacks starting with the actions identified in the Security Directive, including:
As the supplier and network manager of the underlying communications infrastructure for transportation systems, we are aware of our role and responsibilities in mitigating exposure to threats and vulnerabilities.
Icomera has achieved ISO 27001 certification for information security management. ISO 27001 is a process-based, risk-driven approach focusing on continuous improvement. By putting in place controls according to ISO 27001 – aligned with the NIST Cybersecurity Framework – we understand what assets must be protected against which risks, and how those risks are mitigated.
Additionally, Icomera’s Operations Centre provides round-the-clock support for our clients, ensuring any developing incidents are identified quickly and relevant parties are alerted, and engaged in the response plan at the earliest opportunity.

By implementing the right cyber risk management plan, transport operators will be able to identify and protect against threats, and ready themselves to detect, respond and recover from an incident appropriately.
We advise operators to:
With an increase in cyber threats towards rail operators and systems, it is evident that a cyber resilience plan will continue to play a vital role in maintaining the viability of services. Operators must contend with – and address – the threats of tomorrow, today.
This article was originally published Icomera.
Icomera examines how transport connectivity challenges may be overcome by operators using link aggregation and trackside networks.
Icomera discusses how train operators can utilise real-time video surveillance to maintain safer and more reliable transport networks.
Icomera explores how digital technologies can overcome the physical and linguistic barriers to passenger transport use.
Icomera US President, Gabriel J. Lopez-Bernal, will lead a team of fifty engineers and analysts to identify gaps in the passenger experience.
New report highlights future role of connectivity in passenger transport as onboard Wi-Fi usage surpasses pre-pandemic levels.
As SunRail’s end-to-end solutions partner, Icomera will replace its existing Wi-Fi system with industry-leading technology aboard 22 cars.
The Hearing Enhanced Audio Relay (HEAR) application was successfully tested on TfW trains on the Rhymney – Penarth route for two months.
Use the form opposite to get in touch with Icomera directly to discuss any requirements you might have.

We’d love to send you the latest news and information from the world of Railway-News. Please tick the box if you agree to receive them.

For your peace of mind here is a link to our Privacy Policy.
By submitting this form, you consent to allow Railway-News to store and process this information.

We love trains. You love trains. Sign up to our weekly newsletter to have all the latest global industry news calling at your inbox.
You’ll also get our quarterly eMagazine: more trains, but with a shiny cover! Find out what industry suppliers are up to and read in-depth editorials.

By subscribing you agree to our Privacy Policy.



Leave a Reply

Your email address will not be published. Required fields are marked *

Back to top

Adblock Detected

Please consider supporting us by disabling your ad blocker

Refresh Page