Cyber threats in the transportation sector are many and complex and cybersecurity is only as strong as the weakest link. Despite escalating cyber risks, many rail operators struggle to maintain the latest cyber measures to protect their systems, assets and passengers. As technological solutions continue to be implemented by rail operators for improved service management, scheduling, signal control, operational efficiencies, etc., cyber risks will grow exponentially if not managed properly.
The current reality is that many organizations have yet to properly deploy Secure Shell or Transport Layer Security traffic encryption for their communications. In addition, many companies yet don’t employ role-based access control for employees and multiply their risk by providing vendors and partners higher-level systems access.
Are current commercial-off-the-shelf solutions keeping rail systems safe? What is the cost-benefit analysis of purchasing off-the-shelf versus maintaining private, customized solutions? How can governments assist? This session will explore the latest in guidelines, measures and best practices in cybersecurity systems, discussing potential costs and benefits for the rail industry.