Cybersecurity

Building a framework.

We combine operational best practices with cybersecurity state-of-the-art technology, forming a multi-level cybersecurity plan using well understood principles such as “Protect, Detect and Respond”.

Protect: install specific protection measures to prevent and discourage cyber-attacks.
Detect: establish mechanisms to rapidly identify actual or suspected cyber-attacks.
Respond: undertake appropriate action in response to confirmed security incidents to achieve business continuity or disaster recovery.

We aim to reuse terminology and methodologies that are already established and understood in each industry we work with.

Resilience and recovery.

Identifying all the critical assets and components to be protected in transport application is a lengthy process, and it is becoming ever more complex and costly to harden every system aspect against all types of cyber threat.

We adopt a smart and adaptive approach with the aim of improving system resilience – defined as a system’s ability to recover or regenerate its performance after a degradation caused by a successful cybersecurity attack.

Full lifecycle scope.

Our services encompass the whole project lifecycle for transportation infrastructure, addressing both the high and detailed level of cybersecurity needs. We support our customers with services ranging from simple periodic risk assessments to the use of a managed detection and response (MDR) service with 24/7 monitoring of their IT and OT networks.

Intelligence and monitoring.

We work with world-leading technology suppliers to establish tailored solutions that support intelligence gathering and awareness in both Operation Technology and Information Technology environments. By remaining solution agnostic and focusing on the integration of cyber-protection technologies into existing operating environments we are able to match the most appropriate technical solutions to business needs on a case by case basis.

The SOC supports an extensive list of security devices and systems, and is integrated with market leading OT monitoring technology CylusOne. Our security monitoring experts are able to analyse incidents, deal with false positives, and respond appropriately to critical events. Combined with a dedicated Rail Threat & Vulnerability Intelligence lab, we provide intelligence services that go way beyond publicly available Indicators of Compromise (IOC).

On-site, off-site.

We offer our clients on-site SOC building and management of in-house MDR services. We provide access to a dedicated team of operational & cybersecurity experts equipped with a state-of-the-art cyber technology to detect, analyse and respond to advanced threats in real time.

World-leading certification.

We aim to offer our clients best-in-class expertise benefitting from official recognition. Our security monitoring experts are qualified GIAC-Certified Intrusion Analysts (GCIA) and GIAC-Certified Forensic Analysts (GFIA), while our technology is certified to standards such as ISO27001 / 9001, IEC62443 , EN50155 and TS50701. Specific regulation and standards compliance is part of the requirements set that we use to select the right products and technologies to meet our customers’ needs.

Cybersecurity

Protecting essential operations.

Our key areas of expertise.

Our approach.

Building a framework.

Resilience and recovery.

How we help.

Full lifecycle scope.

Intelligence and monitoring.

On-site, off-site.

World-leading certification.

Our sector leaders.

Related projects.

Related news & insights.