Core IT systems or operational control systems, especially for rail, are critical as they are usually responsible for control of the operations and equipment. With the progressive opening of systems, vulnerability, including of SCADA systems, is now a reality that should not be ignored. It is something that public transport companies must take into account and to take action to mitigate.
With the unprecedented pace and complexity of cyber-attacks, and the increasing digitalisation of the sector, a public transport organisation must be proactive in order to protect its critical information and systems and to fulfil its obligations to its customers.
This Action Points provides recommendations to help public transport organisations protecting their information systems.