The U.S. Department of Homeland Security Transportation Administration said on Thursday that it has issued cybersecurity directives targeting high-risk freight railways, passenger railways and rail transit intended to protect transportation safety.
throughout the transport sector.
The directives require owners and operators to appoint a cybersecurity coordinator; report cybersecurity incidents to the Cybersecurity and Infrastructure Security Agency within 24 hours; develop and implement a cyber security incident management plan to reduce the risk of malfunctions; and complete a cybersecurity vulnerability assessment to identify potential vulnerabilities or vulnerabilities in their systems.
The TSA also issued guidance recommending that all other lower risk owners and operators of surface transport voluntarily implement the same measures.
The TSA also said that it expects to initiate a regulatory process for certain surface transport entities to increase their resilience to cybersecurity.
The US Government Accountability Office states that federal cybersecurity measures are urgent to better protect the country's infrastructure.