NCHRP 20-59(48): Effective Practices for The Protection of Transportation Infrastructure From Cyber Incidents Ron Frazier, David Fletcher Co-Principal.

Slides:

Advertisements

Similar presentations

Overview What is the National ITS Architecture? User Services

Advertisements

Tenace FRAMEWORK and NIST Cybersecurity Framework Block IDENTIFY.

It’s Time to Talk About Risk and Control

Brian Connett, LCDR, USN US NAVAL ACADEMY

Copyright 2004 Turning Point Solutions Establishing Lines Of Communication Before a Crisis.

NCHRP (48) 2014 TRB ANNUAL MEETING Effective Practices for the Protection of Transportation Infrastructure from Cyber Incidents Dave Fletcher, Co-PI.

Office of Technology Partnerships September 17, 2007 State and Local Collaboration Michigan’s Cross Boundary Program.

Communication Matters Communicating the Value of Transportation Research NCHRP Report 610 National Cooperative Highway Research Program 0.

Advanced Traveler Information System ATIS. What are Intelligent Transportation Systems (ITS) ? The application of advanced sensor, computer, electronics,

Asia Pacific Economic Cooperation Transportation Working Group ITS Experts Group Chicago, Illinois September 2002 Walter Kulyk, P.E. Director, Office of.

ITS-SAFETEA-LU Title V-Subtitle C page 662 Goals (Partial) –Enhance surface transportation efficiency –Achieve transportation safety goals –Protect and.

Security Offering. Cyber Security Solutions 2 Assessment Analysis & Planning Design & Architecture Development & Implementation O&M Critical Infrastructure.

Organisational risk management

European Intelligent Transportation Systems Market B Published Feb

Lawrence Regional ITS Architecture Update. Today’s Agenda What is ITS? Review 2007 ITS Plans Review the proposed work plan Define project goals and objectives.

Resiliency Rules: 7 Steps for Critical Infrastructure Protection.

© 2006 Jupitermedia Corporation Webcast TitleSuccessful Rollout Planning 1 January 19, :00pm EST, 11:00am PST George Spafford, President Spafford.

 Road Safety the European Union Policy Carla Hess European Commission, Directorate General for Mobility & Transport Road.

IT Governance Steering Committee December 2, 2010.

Financial Advisory & Litigation Consulting Services Risk Management 2006 September 14-15, 2006 The Metropolitan Club, New York, NY Workshop B: Information.

Illinois Department of Transportation Emergency Management I-74 Reconstruction Project Peoria, Illinois ITS Midwest Annual Meeting February 7, 2006.

U.S Department of Transportation Federal Highway Administration Federal Transit Administration Performance Management and Performance-Based Planning and.

Overview of NIPP 2013: Partnering for Critical Infrastructure Security and Resilience October 2013 DRAFT.

Statewide ITS Strategic Plan and Architecture Illinois Public Transportation Association Board Meeting Scott Lee IDOT ITS Technical Coordinator.

Envisioned Role for NTI Concerning ITS Deployment in Egypt by Dr. Mahmoud EL-HADIDI Professor of Telecommunications at Cairo U & Consultant at NTI 3 rd.

Organize to improve Data Quality Data Quality?. © 2012 GS1 To fully exploit and utilize the data available, a strategic approach to data governance at.

IT Governance Committee on Education Technology December 9, 2010.

Roles and Responsibilities

10 September 2015 TRB: Looking to the Future SPEAKER: Neil Pedersen, Executive Director, Transportation Research Board.

1863 National Academy of Sciences 1964 National Academy of Engineering 1970/2015 Institute of Medicine National Academy of Medicine.

1 Approaches for Integrating Systems Engineering into Your Agency’s Business Practices Presented by: Amy Tang McElwain August 2, 2007 Talking Technology.

1 8/26/08 AASHTO Special Committee on Transportation Security National Needs Assessment for Ensuring Transportation Infrastructure Security (NCHRP.

Building Capability.  In order to successfully operate an architecture function within an enterprise, it is necessary to put in place appropriate organization.

October 17, 2012 Connie S. Sorrell Chief of Systems Operations.

Application of the CMMI SM to Plan and Control Life Cycle Costs Dr. Mary Anne Herndon Science Applications International Corporation (SAIC) November, 2003.

APPENDIX-A NORTH DAKOTA STATEWIDE SERVICE PACKAGES and INFORMATION FLOWS.

ConSysTec 3 rd Israel ITS AnnualMeeting Israel ITS Architecture Development Rob Jaffe, Ph.D. President, ConSysTec Shenorock, NY USA.

Practical Investment Assurance Framework PIAF Copyright © 2009 Group Joy Pty. Ltd. All rights reserved. Recommended for C- Level Executives.

Security and the National ITS Architecture ITS America 2003 Session 19: The State of the Practice: ITS and Homeland Security May 19, 2003 Minneapolis,

1 Using Intelligent Transportation Systems (ITS) Technologies and Strategies to Better Manage Congestion Jeffrey F. Paniati Associate Administrator of.

Unit 3: Identifying and Safeguarding Vital Records Unit Introduction and Overview Unit objective:  Describe the elements of an effective vital records.

Transportation Research Board Agency Update Barbara Hilger DeLucia August 6, 2002.

Agency Name Security Program FY 2009 John Q. Public Agency Director/CIO/ISO.

Weaving Security Blankets Make your own bespoke defensive toolkit Presentation by Max Cizauskas For BSides Toronto 2015.

Work Zone Safety and Mobility Transportation Management Plans Jason Gutting, P.E. Michigan Department of Transportation.

Device Management Infrastructure White Paper Brief Profile Proposal for IHE Year Dan Trainor, John Rhoads, Axel Wirth PCD MEM Working Group.

IT Governance Committee on Research Technology December 9, 2010.

Transportation Systems Management and Operations: Why It Matters Presenter Name Date AGENCY LOGO Photo: © Shutterstock.com/iofoto ( )

SAFESPOT Project Kick off Meeting February 16 th and 17 th 2006 Rome 1 Integrated Project Co-operative Systems for Road Safety “Smart Vehicles on Smart.

Regional Telecommunications Workshop on FMRANS 2015 Presentation.

Intelligent and Non-Intelligent Transportation Systems 32 Foundations of Technology Standard 18 Students will develop an understanding of and be able to.

USDOT ITS and Operations Training Grant Zammit Operations Technical Service Team Manager Office of Technical Services – Resource Center

Leadership Guide for Strategic Information Management Leadership Guide for Strategic Information Management for State DOTs NCHRP Project Information.

PROTECTION OF TRANSPORTATION INFRASTRUCTURE FROM CYBER ATTACKS: PROJECT SUMMARY Summary of Findings and Primer Overview Final Presentation Countermeasures.

Protection of Transportation Infrastructure from Cyber Attacks EXECUTIVE BRIEFING.

NEW ZEALAND’S CYBER SECURITY STRATEGY Presentation by: MED, DIA & GCSB.

Program Overview and 2015 Outlook Finance & Administration Committee Meeting February 10, 2015 Sheri Le, Manager of Cybersecurity RTD.

INTELLIGENT TRANSPORTATION SYSTEM DONE S.DHARANI DHARAN S.JEEVAANANTH KONGU POLYTECHNIC COLLEGE.

Surveillance and Security Systems Cyber Security Integration.

Overview of Structure General Data Protection Regulation (GDPR)

Cybersecurity - What’s Next? June 2017

Data Architecture World Class Operations - Impact Workshop.

BUILDING A PRIVACY AND SECURITY PROGRAM FOR YOUR NON-PROFIT

Presented by Robert Ford

5G Security Training

I have many checklists: how do I get started with cyber security?

Cybersecurity: The State Regulators’ Perspective

Cybersecurity Special Public Meeting/Commission Workshop for Natural Gas Utilities September 27, 2018.

Cyber Risk & Cyber Insurance - Overview

DSC Contract Management Committee Meeting

Presentation transcript:

NCHRP 20-59(48): Effective Practices for The Protection of Transportation Infrastructure From Cyber Incidents Ron Frazier, David Fletcher Co-Principal Investigators Transportation Research Board 94 th Annual Meeting January 13, 2015

Key Presentation Take-Away Awareness of this major transportation cybersecurity research initiative Advance look at project deliverables Opportunity to contribute to the research

NCHRP 20-59(48) Overview $300k Research Project –Sponsors: NCHRP, TCRP –Scope: Cybersecurity of industrial control, transportation control and enterprise data systems Deliverables available Q Executive PP briefing template - Cybersecurity primer/best practices - Cybersecurity webinar

Transportation Systems TypeCategoryHighwaysTransit Operational Systems Control SystemsAdvanced Traffic Management System (ATMS) Autonomous Vehicles Train Control System SCADA Road/Weather Systems Traffic Monitoring and Surveillance RR Crossings Traction Power Emergency Ventilation System Monitoring (Pumps, Alarms) SignalingHighway SignalsTrain Signals Communications Advance Traveller Information System (ATIS) Communications Fare Collection SystemsElectronic Toll Collection (ETC) Entry/Exit Gates Ticket Vending Machines, Fare Boxes, Fare Validators, Ticket Encoding HVAC/Building Management HVAC Tunnel Ventilation HVAC systems (not integral part, but loss could result in failure of critical systems) Enterprise Data Systems Business/Revenue/3 rd Party systems: Finance, HR, Messaging ( ), Archives Driver, Vehicle and Crash systems Asset Management Engineering SystemsDesign, ConstructionCADD, Electronic Bidding, Work Zones Track Inspection 4

EFFECTIVE PRACTICES FOR THE PROTECTION OF TRANSPORTATION INFRASTRUCTURE FROM CYBER INCIDENTS EXECUTIVE BRIEFING

Cybersecurity Primer Introduction: What is Cybersecurity and Why It Matters to Transportation Section 1 - Top Myths of Transportation Cybersecurity Section 2 - Risk Management Principles and Risk Management Approaches Section 4 – Plans and Strategies, Establishing Priorities, Organizing Roles and Responsibilities Section 5 – Transportation Operations Systems Section 6 – Countermeasures: Protection of Operational Systems Section 7 – Training: Building a Cybersecurity Culture Section 8 – Security Programs and Support Frameworks CASE, LLC and WMC, LLC

Cybersecurity domains CASE, LLC and WMC, LLC 7

Transportation cybersecurity webinars CASE, LLC and WMC, LLC 8 60 minute in-depth discussions Cybersecurity risks Countermeasures Resources Tailored for Highways and Transit operations staff Will be conducted 1Q - 2Q 2015 Dates still being negotiated with sponsors.

How you can contribute Provide additional cyber incidents Provide additional business case material Provide examples of cyber plans, policies, training, etc. Co-sponsor webinars CASE, LLC and WMC, LLC 9

Thank You For additional information or to contribute additional material, please contact: Dave Fletcher Co-Principal Investigator, NCHRP 20-59(48) Western Management and Consulting, LLC