原文传递
Responding to TSA's Cybersecurity Directive:Principles and Tactics to Begin Your Cybersecurity Journey
| 题名: | Responding to TSA's Cybersecurity Directive:Principles and Tactics to Begin Your Cybersecurity Journey |
| 正文语种: | eng |
| 作者: | Ryan Layton |
| 作者单位: | Secuvant LLC |
| 摘要: | Transportation Security Administration (TSA) released two cybersecurity-focused directives applicable to the rail industry underscoring the focus by TSA, the Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA), on prescribing specific cybersecurity requirements on industry to protect critical infrastructure.In addition to the Security Directives, TSA also introduced an Information Circular providing similar guidance (strong recommendations) to ALL surface transportation organizations. While not a directive, the guidance found in the Information Circular mirrors the previously released Security Directives. The directives and circulars require applicable organizations to implement ownership and accountability measures for managing and reporting incidents; furthermore, it requires that organizations effectively assess and mitigate their overall risk exposure. This is no small feat! Organizations should begin by adhering to the following three core principles:Cyber Risk is Business Risk. Cyber risk goes far beyond the purview of the IT organization. Human Resources, Sales, Marcom, Legal, Operations, Finance and others play a critical role in preventing and effectively managing cyber risk. |
| 出版年: | 2022 |
| 期刊名称: | Mass Transit |
| 卷: | 48 |
| 期: | 1 |
| 页码: | 11-11 |
检索历史
应用推荐
