The Department of Homeland Security (DHS) issued new cybersecurity directives for the rail industry designed to protect freight and passenger rail lines from cyber-attacks. The Transportation Security Administration (TSA) identified rail services as high risk and is mandating the changes be implemented immediately. The new rules make it mandatory for rail company owners and operators to have a cybersecurity coordinator, report cybersecurity attacks to CISA in 24 hours or less, and create a cybersecurity incident response plan. The rules also require owners to complete cybersecurity vulnerability assessments. Some policy makers pushed back against the mandatory reporting regulation, but DHS noted that the new requirements were baseline protections all organizations should follow.
By Akshay Rohatgi and Randy Pargman About this Student Research Project Binary Defense’s mission is