Overview

In today’s industrial environment, the threat of cyber attacks is becoming increasingly significant and consequences can be catastrophic. A cyberattack on Operational Technology (OT) systems like Signalling can compromise the integrity or availability of these systems and result in financial harm, equipment damage, disruption of service and even loss of life. It is therefore essential to ensure that cyber security requirements are defined appropriately, that there is a proper cyber security framework in place for organizations and projects and consider the aspect of cyber security throughout the entire lifecycle of a project, including the design, construction, operation, and maintenance phases.

This presentation will cover the entire cybersecurity lifecycle in the railway industry with a focus on mitigating cyber threats and enhancing the security of critical railway infrastructure.

Learning outcomes

• Introduction of System Under Consideration (SuC) in the context of Cybersecurity for Rail Systems.
  Concepts of Zones and Conduits in a Security by Design System ( IEC 62443 series) in the context of Rail systems (ETCS).
• The Concept of Security Level.
• The Concept of SL- Target, (SL-T) Security Level- Capability (SL-C) Security Level – Achieved (SL-A).
• The threat scenarios in the railway systems domain and their impact on Confidentiality, Availability and Integrity of Rail Systems (CIA).
• Different Threat groups and threat types in the Rail Domain.
• Initial Cybersecurity Risk Assessment and determination of SL-T for Rail.
• Detailed Cybersecurity Risk Assessment ,typical Risk Matrix in the Rail Domain, Risk Register
• The link between cybersecurity and Safety aspects of Rail systems and how Cybersecurity Assurance leads to Safety Assurance and over all systems Assurance.
• The Cybersecurity Requirements, Controls for a typical rail System with example of ETCS.
• Design of a Cybersecurity Core for safeguarding the Rail systems and rail operation in the back drop of rising Cyber threats.
• Incorporation of Cybersecurity Requirements in other rail systems like Control system NW, Radio Systems, Trackside equipment/ Signalling Equipment, On Board Unit.

About the speakers

Raka Mitra, Certification and Authorisation Manager, Alstom

Soroush Tazerji, Technical Director, Security- Tactix Sener

Fouad Lotfi-Jam FIEAust. CPEng. NER, Principal Project Director- Rail, Caspian Consulting Engineers Pty. Ltd.

Fouad is a Rail management, infrastructure, systems, engineering, operations and maintenance specialist with over 20 years experience in transport and buildings projects. He has extensive experience in the management of large multi-disciplinary transport projects with a specific focus on metro, heavy and light rail infrastructure. Project and resource management skills to harness a team culture which ensures timely delivery of works. Fouad’s project experience is across all facets of project life cycle allowing a balanced understanding and analysis of options available and a balanced considered view. As the the Victorian/Tasmanian chapter chair for RTSA, he is passionate about advocating and advancing rail’s role in fighting key challenges like climate change.

To register, click on the link below.