As 2024 winds down, it’s a good time to reflect on how much the rail cybersecurity landscape has evolved. At InnoTrans 2024, we had the opportunity to discuss these changes with Eddy Thesee, VP of Cybersecurity at Alstom. Eddy’s insights highlighted the industry's progress and the challenges still ahead, offering a clear picture of how far we’ve come and what’s next.
A Shift in Responsibility
One of the most significant shifts over the past few years has been in who’s responsible for cybersecurity. In the past, operators were left to figure out how to secure systems, even if those systems weren’t built with security in mind. Eddy explained that this is changing thanks to regulations like the Cyber-Resilience Act.
Now, manufacturers are being held accountable for delivering secure products. This means embedding cybersecurity features from the start and committing to long-term support, like regular updates and security advice, for the product's lifetime. Considering that some rail systems remain in use for 40 or even 50 years, this is a significant shift that brings much-needed sustainability to the industry.
Cybersecurity is No Longer Niche
Cybersecurity has gone from being a niche concern to a core focus for the rail industry. At this year’s InnoTrans, Eddy emphasized how dedicated cybersecurity providers, like Cylus, are driving this shift. While the rail sector has traditionally relied on more generic cybersecurity solutions, Cylus’s focus on rail-specific cybersecurity has set a new benchmark, creating a tailored approach that addresses the unique challenges of the industry.
Eddy noted that the industry has moved from merely exploring cybersecurity solutions to actively implementing them. Operators are no longer just gathering information or assessing the market; they are now looking at how to implement cybersecurity effectively, with cost and efficiency becoming critical considerations. This marks a significant shift in mindset, signaling that cybersecurity is no longer optional but an operational necessity.
The regulatory environment also plays a significant role, adding both urgency and pressure to adopt robust solutions. Operators are asking not just “Do we need cybersecurity?” but “How can we implement it efficiently while balancing costs and staying compliant?” Cylus’s leadership in this space is helping operators and manufacturers navigate these challenges, ensuring that cybersecurity is integrated seamlessly into both legacy and new systems.
Tackling Real Challenges
Despite these advancements, challenges remain. Eddy highlighted the pressures operators face to increase efficiency while keeping costs down. Recovery from the pandemic means higher traffic levels and greater wear and tear on equipment, pushing operators to digitize and connect their systems to manage demand.
But more connectivity also means a larger attack surface. Operators need cybersecurity solutions that don’t just add protection but also enhance efficiency. As Eddy put it, these solutions must be “easy to deploy, easy to maintain, and resilient over time.”
Another challenge is building cybersecurity solutions that can adapt to long operational lifecycles. Systems installed today may still be in operation decades from now, requiring cybersecurity measures that can evolve and adapt to changing threats and technological progress over time.
What’s Next for Rail Cybersecurity?
Looking ahead, one of the most significant opportunities—and challenges—will be addressing cybersecurity for safety-critical systems. Eddy pointed out that while industries like aviation have made progress in this area, rail is still catching up. Developing cybersecurity measures specifically for safety systems will require collaboration across the industry, from operators to manufacturers and beyond.
If there’s one takeaway from 2024, it’s the importance of collaboration. Whether developing new standards, creating cost-effective solutions, or addressing long-term challenges, progress happens when the entire ecosystem works together. Eddy emphasized how regulations and awareness are helping to build this ecosystem, pushing the industry toward greater maturity.
Equally important is partnering with a cybersecurity solution that understands the operational and regulatory demands unique to the rail industry. A solution tailored to rail doesn’t just protect systems—it empowers operators to adapt, innovate, and ensure continuity in this unique ecosystem.
Looking Ahead
As we close the year, rail cybersecurity is at a turning point. The foundations laid in 2024—greater accountability, better solutions, and a stronger ecosystem—are setting the stage for even more progress in the years to come.
Here’s to carrying this momentum into 2025, tackling challenges, and building a safer, more secure future for rail systems worldwide.
Catch the full conversation with Eddy Thesee, VP of Cybersecurity at Alstom, on our YouTube channel.