Blog

IRS Webinar on cybersecurity for railway digitisation explores how to respond to modern cyberattacks

Courtney Schneider

4 February 2021

IRS Webinar on cybersecurity for railway digitisation explores how to respond to modern cyberattacks
By Courtney Schneider
Digital threats facing rail networks have increased to new levels during the global pandemic of 2020. The security of rail network connectivity has never been more important; targeted ransomware and cyber terrorism are very real threats facing an industry still finding its feet when it comes to standardising cybersecurity approaches. Because of this, rail operators all over the world are quickly adapting their security postures. The question is, what are the different ways to strengthen rail cyber defences? Carefully managing the complex attack surface of diverse digital rail networks can be complicated, but is absolutely critical.
To reflect on a volatile year, the International Railway Summit hosted a webinar entitled ‘Cybersecurity for rail digital transformation projects during the pandemic’, with leading global rail cybersecurity experts tackling these fundamental and complex issues.
The panel discussion focused not only on current threats, but also the security of rail connectivity today, what needs to be done to minimise the attack surface of rail networks, and what options are available to mitigate these risks and the associated costs.
Jesus Molina, Director of Industrial IIoT for Waterfall Security, kicked off the debate with unique insights into hardware-enforced network segmentation for rail. Dr. Molina walked the audience through diverse projects and implementations where unidirectional gateway technology provides safe integration of network segments at differing levels of safety and reliability criticality.
From the international research perspective, Marie-Hélène Bonneau, Head of Security at the International Union of Railways (UIC), highlighted the global cyber and physical threats facing rail and metro systems in the age of ever-increasing digitisation, communication, and the implementation of 5G for rail projects all over the world.
Vish Kalsapura, Principal Engineer at Network Rail in the UK, introduced their large-scale modernisation ‘Digital Railway’ programme and how they are grappling with cybersecurity to address the risks that come with dramatically increased connectivity.
How can we tackle the challenges of securing critical rail infrastructure? More should be done of course, but the difficult question we all must address is “what next?”. What solutions, approaches, standards, technology, knowledge-sharing and/or programmes should be part of the next step towards more robust security? In a poll, most of the webinar’s participants expressed that nowhere near enough had so far been done in their respective organisations to address this issue.
I recommend the webinar for decision-makers and security practitioners within the rail sector – some of the world’s thought leaders provide very helpful guidance as to navigating the challenges so many of us face. You can watch the recording here.
# # #


Category: Blog

Tags:


About the author

Courtney Schneider specializes in ICS global cybersecurity policy for Waterfall Security. She has over 10 years of experience as a strategic consultant for leading global consulting firms in multiple industries in four countries.