New TSA Cybersecurity Directives Coming for Rail, Aviation Organizations
DOJ unveils two initiatives to tackle cybersecurity, Telegraph leaks massive amount of data, Ruler of Dubai used NSO's Pegasus to spy on ex-wife, EU adopts wide ban on facial recognition, much more
Check out my latest column on the TSA’s upcoming cybersecurity directives on rail transport and aviation organizations.
At the Billing Cybersecurity Summit, Homeland Security Secretary Alejandro Mayorkas announced that the Transportation Safety Administration would issue new cybersecurity directives that introduce regulations for rail transport and aviation operators.
The new directives will require most critical rail and transit systems to identify a cybersecurity point person, report incidents to the Cybersecurity and Infrastructure Security Agency (CISA), and create an incident recovery plan. In addition, for “lower-risk” rail entities, TSA will issue voluntary guidance that “encourages, rather than requires” these companies to take the same measures.
TSA plans to issue new requirements for critical U.S. airport operators and air passenger and cargo companies to designate a cybersecurity coordinator and report cyber incidents to CISA. (Ellen Nakashima / Washington Post)
Keep reading with a 7-day free trial
Subscribe to Metacurity to keep reading this post and get 7 days of free access to the full post archives.