Rail OT Cyber Security
Digital Transit Limited offer a one-day workshop, or 6 week modular online course, for engineers, managers and other rail decision makers to learn about the new TS50701 standard. The workshops will help attendees expand their knowledge and make better decisions around the standards and their application in the area of railway cyber security.
This course is based upon the new railway cyber security specific CENELEC standards, TS50701 and best practice from other OT and IT Cyber security standards such as ISO27001, IEC 624423 and the Australian Standard® AS 7770 Rail Cyber Security.
Our CENELEC training provides a complete overview of the important standards, with well-structured presentations and frequent discussion sessions ensuring that attendees get the most from participating.
Our Expert Course Instructor is Dr Howard Parkinson.
Key Learning Objectives
- What is Cyber Security? – putting it into the context of railway and transportation.
- Identify the threats and vulnerabilities (such as cyber security, safety and availability).
- Develop mitigation actions for threats and vulnerabilities and recovery from potential consequences.
- Cyber Security – What standards are available for dealing with threats.
- An understanding of how TS70101 can improve cyber security across the entire railway.
About the Course
The railway sector is facing a new challenge: the Network Information Security (NIS) regulations. According to a 2020 survey by the European Union Agency for Cybersecurity (ENISA), only 33% of rail operators of essential services (OES) have fully implemented defensive measures against cyber-attacks, as recommended by NIS regulations. This places their software under serious threat – not to mention their compliance with regulations. When security breaches occur the ripple effect throughout an organisation can be vast, with implications that are both financial and personal. There may also be implications concerning system safety and resilience.
This course is an introduction to the major themes of cyber security and will start you on a journey to the creation of a secure rail operation. You will be able to communicate effectively, make informed trade-offs, assess risk, improve defences, and reduce vulnerabilities in your systems.
The course content is mapped to:
• Industry standard competencies, skills and evidence requirements relevant to rail safety work (see our website for details)
• Industry regulations
• National and international standards
Information is interspersed with practical exercises. There is a short multiple-choice examination at the end to assess the identified learning outcomes.
Who Should Attend?
This blended course is for railway business leaders, managers, railway inspectors, railway legislators, safety professionals, planners, Information Technology (IT) professionals, resilience specialists and railway engineers tasked with making decisions that could impact the cyber resilience of technical and organisational systems.
Level: Fundamental Recommended Pre-requisites
Participants should have a general understanding of engineering and project management principles and practice.