Enhancing Public Transportation and Passenger Rail Cybersecurity

TSA issued Security Directive 1582-21-01 “Enhancing Public Transportation and Passenger Railroad Cybersecurity”, Dec. 2, for each owner/operator of a passenger railroad carrier or rail transit system identified in 49 CFR 1582.101 which went into effect Dec. 31.

The Security Directive requires the owner/operator of an applicable passenger railroad carrier or rail transit system, to:

• Designate a Cybersecurity Coordinator;
• Report cybersecurity incidents to the Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA) no later than 24 hours after a cybersecurity incident is identified;
• Develop a Cybersecurity Incident Response Plan; and
• Conduct a cybersecurity vulnerability assessment using a form provided by TSA.

This webinar will allow attendees to glean more information from TSA regarding the incident response plan requirements, details of the vulnerability assessment form and what to expect when an incident is reported. Available resources will also be shared.

Presenters:

• Scott C. Gorton, Executive Director, Surface Policy, Policy, Plans, and Engagement, Transportation Security Administration
• Christopher T. McKay, Mass Transit Industry Engagement Manager, Industry Engagement Branch, Policy, Plans, and Engagement, Transportation Security Administration
• Mike Isper, Branch Manager, Surface Cybersecurity Support, Surface Operations, Transportation Security Administration