Cyber Security in the Transportation Sector

As transport operators continue to digitise their operations to improve communications, signalling, timetabling and passenger experience, they cannot afford to ignore the associated cyber security risks.

Organisations transporting goods and passengers across air, rail, road and sea need to ensure they maintain a strong cybersecurity posture by proactively identifying and addressing risks plus detecting and responding to threats swiftly and effectively.

Key challenges faced by organisations in the transport sector include

  • •   Maintaining continuity and safety of essential services and operations
  • •   Improving aging and fragmented network infrastructure
  • •   Protecting the personal data of passengers and clients
  • •   Reducing cyber risks across the supply chain
  • •   Balancing smart innovations and security
  • •   Complying with NIS, PCI and GDPR requirements
Key security questions for transport operators
  • •   How often is digital infrastructure tested for vulnerabilities?

  • •   Are suitable controls in place to defend against targeted attacks?

  • •   Are systems able to identify threats that bypass the perimeter?

  • •   Is there a plan in place to detect, remediate and report breaches?

  • •   What systems and controls are in place to mitigate insider threats?

  • •   How are security risks in the supply chain managed?

  • •   Is payment processing PCI DSS compliant?