NIS Poses Threat to Rail Software Compliance
Critical Software and Digital Transit Limited have joined forces to provide expert guidance to rail manufacturers navigating NIS regulations.
The railway sector is facing a new challenge: the Network and Information Security (NIS) regulations.
According to a 2020 survey by the European Union Agency for Cybersecurity (ENISA), only 33% of rail operators of essential services (OES) have fully implemented defensive measures against cyber-attacks as recommended by NIS. This puts their software at serious risk—not to mention their regulatory compliance.
Critical Software has partnered with longstanding collaborator Digital Transit Limited, a rail technology company experienced in assessing safety-critical software, to offer the latest guidance on NIS regulations governing cybersecurity.
Howard Parkinson, Director of Digital Transit, commented: “We’re pleased to work with Critical Software to ensure the new cybersecurity standards are applied optimally to keep railway software secure and safe. While existing standards like ISO 27001 and IEC 62443 go part of the way, new standards such as CENELEC TS50701 and NIS are very helpful but may be difficult for many companies in the sector to follow.”
“We look forward to continuing our partnership with Critical and helping railway companies navigate this challenge in the coming months.”
Philipp Rößler, Business Development Manager for High-Integrity Systems at Critical Software, added: “Working closely with our trusted partner Digital Transit on NIS regulations and TS50701 was the next obvious step toward empowering our customers—both new and existing—to overcome the challenges of the new standards, combining our expertise in process consulting with field-proven technical experience.”
“Our joint offering is more comprehensive, allowing us to deliver faster and provide better value to our customers.”
Through their collaboration, Critical and Digital Transit will ensure developers comply with the new regulations by aligning their work with CENELEC TS50701, consolidating existing requirements regarding the cybersecurity of rail-based software.
Want to stay on the right side of NIS? Book a 30-minute conversation with one of our experts today to ensure you aren’t part of the 67% lagging behind.