CYRAIL Final Conference ERA on cybersecurity

Slides:

Advertisements

Similar presentations

Health & Consumer Protection Directorate General The EU Health Strategy and the new Health and Consumer Protection Programme Bernard Merkel Paula.

Advertisements

The French approach to CIIP ENISA workshop. Coordination of CIP in France ANSSI 2 A cross-ministerial issue The General Secretariat for Defense and National.

An Ocean of Opportunity: An integrated maritime policy for the EU 1 Places of refuge: General legal framework and developments within IMO and the EU Alexandros.

SMART GRID DEVICES SECURITY CERTIFICATION

NIS Directive and NIS Platform

European Union Agency for Network and Information Security Follow ENISA: ENISA and standards Sławomir Górniak European Union Agency.

The European Commission's Approach to Responsible Business: Towards a strategy on Corporate Social Responsibility.

The European Railway Agency in development

Greening the ENP, Ukraine Implemented by EPL in cooperation with WWF- EPO and Hbf.

Challenges and the benefits of interoperability for the railway industry and the rail transport Eric Fontanel UNIFE General Manager.

BEWAG (UIP) General assembly European Railway Agency Jean-Marie DECHAMPS, Head of Sector (Safety) Brussels, 27 April 2015.

N° 1 The European railway Agency: an engine for the integrated railway area EFRTC, Vilamoura on June 24 TH 2005 Olivier PIRON 24 June 2005.

Supporting European Rail Accident Investigation Inter national Rail Safety Conference Sweden 29th September 2009 Dr Jane Rajan Head of sector : safety.

1 EFSA Scientific Panel on Dietetic Products, Nutrition and Allergies (NDA): Work Programme & Future Focus Albert Flynn Chair, NDA EFSA Management Board,

UIC ERTMS World Conference Certification and Assessment of GSM-R Begoña DOMINGO, GSM-R Project Officer Istanbul, 3/04/2014.

Transport Enhancing TEN-T funding Pawel Stelmaszczyk Special Envoy for European Mobility Network DG MOVE Warsaw, 18 December 2013.

European Railway Safety Strategy EIM Safety Group (PhGALLEY and J-Å HALLDEN) 29 september 2009.

Click to edit Master title style 1 Baltic IT&T 2005 Forum EU cooperation for a culture of network and information security Pernilla Skantze, ENISA.

European Union Agency For Network And Information Security Security and resilience for eHealth Infrastructures and Service – ENISA study Dimitra Liveri.

HST Region High Speed Trains and Regional Development ”HST Region” Updated PP-Presentation October/December2008.

HST Region High Speed Trains and Regional Development ”HST Region” Updated PP-Presentation October 08/January 09.

Independence and powers of regulators: legal and institutional requirements Heinz Hilbrecht, Director, European Commission World Forum on Energy Regulation.

Safety Objectives of European Railway Agency Raigo Uukkivi Estonian Railway Inspectorate DAGOB Final Conference , Tallinn.

EU Cybersecurity Strategy and Proposal for Directive on network and information security (NIS) {JOIN(2013) 1 final} {COM(2013) 48 final} Digital Enlightenment.

SEVESO II transposition and implementation: Possible approaches and lessons learned from member states and new member states SEVESO II transposition and.

Cybersecurity Strategy in Japan May 2016 Yasu TANIWAKI Deputy Director-General National center of Incident readiness and Strategy for Cybersecurity (NISC)

Harmonised use of accreditation for assessing the competence of various Conformity Assessment Bodies Dr Andreas Steinhorst, EA ERA workshop 13 April 2016,

N° 1 Possible co-operation between rail and buses in the area of Telematics Applications for Passengers Presented by European Railway Agency (ERA) th.

ANSI – ESOs meeting Washington February 2017

Eric Peirano, Ph.D., TECHNOFI, COO

The Management of Third Party Generated Risk in Ireland

TRANSPORT SCIENCE: INNOVATIVE BUSINESS SOLUTIONS

ROAD – RAIL – URBAN TRANSPORT

Dimitra Liveri | NIS Expert CSA CEE Summit 2017|Ljubljana - 9 March

European Rail Infrastructure Managers

NAB/RB Training Workshop In Valenciennes, April 2016

Accident investigations: developments and roles

4th Railway Package – Implementation of the Technical Pillar

Transport cooperation for an interconnected Africa

INEA Innovation and Networks Executive Agency

THE POTENTIAL FOR BIG DATA AND OCCURRENCE REPORTING FOR BETTER SAFETY MANAGEMENT Jen ABLITT, Head of Safety Strategy and Performance Sector.

About the NIS directive

Railway Mobile Communication System Future Dan Mandoc,

Session II: System authority for ERTMS 4RP Trackside approval

Critical Infrastructure Protection Policy Priorities

Shift2Rail, innovating ERTMS Control Command and Railway Communication Conference 16 November 2017, Valenciennes Giorgio Travaini, Head of Research &

Cyber Security coordination in Europe CERT-EU’s perspective

15-16 November 2017 Valenciennes, Cité des Congrès

Forum for Air quality Modelling FAIRMODE ew. eea

The Role of European Standards in Support of the Cybersecurity Act

Meeting of the WG on Rail Transport Statistics 2-3 April 2009

Dan Tofan | Expert in NIS 21st Art. 13a WG| LISBON |

Policy Framework for C-ITS Deployment in Europe

The EU Strategy and Action Plan for customs risk management

Nick Bonvoisin Secretary to the Convention on the

Trust and Security Unit

Final Conference in Paris Exploitation plan

DG AGRI, Unit F6 Bioenergy, biomass, forestry and climatic changes

UIC Welcome and introduction

Animal Welfare EU Strategy

European Railway Agency

Shift 2 Rail ERA Involvement 17 FEB 2014 BRUXELLES.

Securing free and fair European elections

Security for Safety: Enabling Digitalization of Railway Systems

Recent developments in the EU transport policy

The European Union response to cyber threats

Community of Users.

REPORTING ON DELIVERY OF EU BIODIVERSITY ACTION PLAN

Presented by European Railway Agency (ERA)

ERA and accident statistics

Presentation transcript:

CYRAIL Final Conference ERA on cybersecurity UIC – Paris, 18 September 2018

EU Agency for Railways - Mandate MAKING THE RAILWAY SYSTEM WORK BETTER FOR SOCIETY The objective of the Agency is to contribute, on technical matters, to the implementation of the European Union legislation aimed at improving the competitive position of the railway sector by: Enhancing the level of interoperability of railway systems Developing a common approach to safety on the European railway system Contributing to creating a Single European Railway Area without frontiers, guaranteeing a high level of safety level of safety In 2019, the "4th Railway Package" transforms the Agency from a consultative body to an Authority issuing Safety Certifications and Vehicle Authorisations “make it work” Founded in 2004* Valenciennes (F) approx. 165 staff

The EU Agency for Railways Cyber Action Plan 1/2 To monitor all activities related to cybersecurity in the railway context Promote adoption of native security features in future radio communication and signaling systems To cover safety requirements of the rail system, including the assessment of safety consequences originated by security threats Security threats based on physical access to assets outside of scope Radio link inherent threats considered Safety AND Security Management Systems To reflect the above in TSIs (TAF/TAP, OPE, CCS) and CSMs

Activities related to cybersecurity in the railway context WG 26 Draft Technical specification: “Railway Applications – IT-Security / Cybersecurity for railway systems”  Implementation of a consistent approach to the management of the security of the railway systems TC CYBER Technical Report: “Implementation of the NIS Directive”  Guidance on considerations for incident notification; best practices in cyber security risk management TD 2.11 and CYRAIL Definition of a security by design system, dedicated to railways (e.g. Protection Profiles Specification) Application of the methodology to railways (demonstrator)

The EU Agency for Railways Cyber Action Plan 2/2 To foster close cooperation with ENISA and EC Support railway stakeholders on cybersecurity strategy development Assist the development of network of Railway Cyber Security Experts Consider incident reporting schemes To cooperate with EU-Agencies in the transport sector (EASA, EMSA)  Conference planned in Portugal in January 2019 To investigate with National Cybersecurity Authorities (e.g. ANSSI, BSI…) potential gaps in cybersecurity requirements To support the concept of an ISAC (Information Sharing & Analysis Center) for Rail Kick-off meeting supported by DB and Infrabel on 05/06 @ERA Next meeting in October in Frankfurt

Towards a rail sector ISAC

ERA on cybersecurity strategy in summary Monitor relevant activities related to cybersecurity in the railway context Cover safety requirements of the rail system, including the assessment of safety consequences originated by security threats Reflect the above in Technical Specifications for Interoperability and Common Safety Methods Regulation considerations Close relationship with ENISA and EC in support of railway stakeholders Cross-fertilisation with EASA and EMSA to develop a transport cybersecurity policy Investigations with National Cybersecurity Agencies (e.g. ANSSI, BSI) on potential gaps Support the concept of a Rail ISAC (Information Sharing & Analysis Center) Cooperation building