The Department of Homeland Security (DHS) issued new cybersecurity directives for the rail industry designed to protect freight and passenger rail lines from cyber-attacks. The Transportation Security Administration (TSA) identified rail services as high risk and is mandating the changes be implemented immediately. The new rules make it mandatory for rail company owners and operators to have a cybersecurity coordinator, report cybersecurity attacks to CISA in 24 hours or less, and create a cybersecurity incident response plan. The rules also require owners to complete cybersecurity vulnerability assessments. Some policy makers pushed back against the mandatory reporting regulation, but DHS noted that the new requirements were baseline protections all organizations should follow.
12 Essentials for a Successful SOC Partnership
As cyber threats continue to impact businesses of all sizes, the need for round-the-clock security