Latest Rail News

07.11.17

Cyber security vital after four attacks on Britain’s rail network last year

Digital technology must play a part in improving organisational resilience and reducing passenger safety risk, a leading rail industry figure has stated.

Speaking at Rail Network Resilience 2017 last week, Arup’s resilience, security and risk associate, Nadim Choudhary, said that cyber security is a very real threat to Britain’s railways.

The cyber security threat is so great that the government has added it to its tier 1 threats, alongside terrorism, war and global pandemic.

Every 4.7 seconds there is a new malware threat introduced to the internet.

In the past, security threats were physical systems with no online connectivity, however, in the last year alone there have been four major cyber-attacks on the railways.

Previously the development of operational technology (OT) and information technology (IT) have been treated as separate entities, but Choudhary said that this is changing.

The railways are joining the 21st century and the two systems are merging, which exposes the network to more cyber-attacks.

In response to this, safety is now becoming embedded in the IT systems of the railways, but this is not without its challenges.

However, this impacts on business continuity and, if it becomes a frequent event, it will undermine the public’s confidence in the network, as well as having a financial impact on companies due to imposed fines for failure to meet the agreed service.

Choudhary explained that natural events expose the industry to cyber threats: “If we have a natural hazard event, or we have a flooding event, or whatever event we have, cyber criminals are very resourceful - they know when systems are down and they will attack things when organisations are at their most vulnerable.”

The industry needs to have a joined up approach to developing a coherent strategy for maintaining cyber security, identifying gaps for research, and standards and guidance need to be issued, he advised.

The supply chain also needs to be robust and resilient, and collaboration with peers is vital to establish what the cyber risks are.

Cyber security should be considered a fundamental part of an organisation,” he continued. “It shouldn’t just be a bolt-on, added at the end, it should form part of the solution, it should be at the outset of the design when we are considering and designing our systems and components, and cyber security should be a part of that.”

Have you got a story to tell? Would you like to become an RTM columnist? If so, click here

Comments

There are no comments. Why not be the first?

Add your comment

related

Rail industry Focus

View all News

Comment

The challenge of completing Crossrail

05/07/2019The challenge of completing Crossrail

With a new plan now in place to deliver Crossrail, Hedley Ayres, National Audit Office manager, major projects and programmes, takes a look at ho... more >
Preparing the industry to deliver trains for the future

04/07/2019Preparing the industry to deliver trains for the future

The move to decarbonise the rail network involves shifting to cleaner modes of traction by 2050. David Clarke, technical director at the Railway ... more >

'the sleepers' blog

On the right track, Sulzer is awarded RISAS accreditation for Nottingham Service Centre

29/06/2020On the right track, Sulzer is awarded RISAS accreditation for Nottingham Service Centre

Following an independent audit, Sulzer’s Nottingham Service Centre has been accepted as part of the rail industry supplier approval scheme (RISAS). The accreditation reinforces the high-quality standards that are maintained by Sulzer’s... more >
read more blog posts from 'the sleeper' >

Interviews

Andrew Haines, CE of Network Rail, tells BBC News his organisation could issue future rail franchises

24/06/2019Andrew Haines, CE of Network Rail, tells BBC News his organisation could issue future rail franchises

Andrew Haines, the Chief Executive of Network Rail, has told the Today programme on Radio 4's BBC’s flagship news programme that he would not rule out his organisation issuing future r... more >
Advancing the rail industry with management degree apprenticeships

08/05/2019Advancing the rail industry with management degree apprenticeships

In answering the pressing questions of how current and future generations of managers can provide solutions to high-profile infrastructure projects across the UK, Pearson Business School, part of... more >