Monday, 6 November 2017

3rd Annual Rail Cyber Security Summit London March 13/14th 2018

On March 13th and 14th 2018, the Cyber Senate Rail Cyber Security Summit returns to London United Kingdom to address the evolving cyber threats to global rail infrastructure.
Advanced digitisation widely deployed to increase enterprise efficiencies, network optimisation, enhanced asset visibility and increased shareholder value, has also created a proliferation of endpoint vulnerabilities throughout a legacy system historically isolated from such threats.
From passenger information systems to IT and OT converged architectures and the rapidly advancing deployment of the Internet of Things, the C suite now have a challenge on their hands that may increase profitability but also may prove to have severe consequences capable of effecting the ability to run and operate rail infrastructure safely.

Join us as we address change transformation, cybersecurity and safety, maturity models, governance and share technical case studies from front-line IT and OT leaders. Together we will discuss best practice in supply chain and third party risk, developing a culture of awareness, training and managing skills gaps. We will also look at the potential impact of insurance, how we are redefining procurement language, but most importantly, how the industry can better develop its response capability and leadership.

Learn more about the programme and who will be joining us at

Tuesday, 24 January 2017

How to hack a train, safely

On March 14th and 15th in London, Solutions Architect James McKenney of the CSX Corporation will be discussing "How to hack a train, Safely. Rail Cyber Risk, Testing Methodologies and Techniques," for the Cyber Senate 2nd Annual Rail Cyber Security Summit.

Mr McKenney states, "The rail environment has its share of anecdotes on cyber risk and rumors of cyber attacks. But really, can a cyber attack cause a safety issue? Can it truly disrupt rail operations? In this talk I discuss the program I developed and led over the summer which built a live environment of in-service locomotives, switches, crossings and signals for hackers to attack and explore eleven questions that keep coming up in rail; For example; Can a cyber attack cause a train to accelerate out of control? Can a cyber attack cause a train to miss a braking target? Can it cause a collision? To finally put the anecdotes to rest we built a program with real trains, engineers and missions to understand impact, and, if an adverse outcome was possible, what level of expertise would be needed to carry it out.

In the presentation I can’t discuss the actual results; but I can discuss how to frame the program, gain support, build and run the program. I also discuss the developed methodologies, techniques and lessons learned from attempting to achieve inherently unsafe outcomes."

The CSX Transportation network encompasses about 21,000 route miles of track in 23 states, the District of Columbia and the Canadian provinces of Ontario and Quebec. Their transportation network serves some of the largest population centers in the nation. Nearly two-thirds of Americans live within CSX’s service territory. The company’s rail and intermodal businesses serve major markets in the eastern United States and has access to over 70 ocean, river and lake port terminals along the Atlantic and Gulf Coasts, the Mississippi River, the Great Lakes and the St. Lawrence Seaway. The company also has access to Pacific ports through alliances with western railroads.
Additional Speakers include: Department for Transport, RSSB, SNCF, DB Netz, London Underground, Network Rail, NS Dutch Railways, Thales, The Go Ahead Group, ERTMS Users Group with special panellist contributions from Transport for London and leading transport cyber security subject matter experts from the US based AMC Cyber and panel moderation from the US ICS ISAC.
Final seating is now being allocated

2nd Annual 
Rail Cyber Security Summit 

London England
14th & 15th March 2017
Millennium Gloucester Hotel

Lead Co Sponsors Thales
Associate Sponsors Waterfall Securities
Exhibitors LightCyber

Media Partners include:
AMC Cyber, CCI, Infosecurity Magazine, Webster University's Cyberpspace Research Institute, ICS ISAC

Exclusive hotel rates are available for a limited time at the Millennium Gloucester Hotel

Sponsorship and delegate information contact
or call + 44 (0)207 096 1754 

2016 sold out with representatives from the Rail Operators, Government, Cyber Security Solution providers and industry leading consultants and integrators.    

Asset Information and Data Management for Smart Rail June 14/15th London
Call for Papers contact
The Cyber Senate is a division of Sagacity-Media Ltd 
Registration number Companies House 
08753316, England & Wales

Friday, 6 January 2017

Department for Transport Head of Cyber Security provides Keynote on Rail Cyber Security Summit in London

Key Note Presentation Achieving Cyber Security – The Government’s Role in Partnership with Industry
On March 14th and 15th in London the Cyber Senate will host its 2nd Annual Rail Cyber Security Summit, addressing cyber risk, safety and threats to rail infrastructure globally. 
With key presenters and panellists from DFT, TFL, London Underground, Network Rail, ICS ISAC, SNCF, DB Netz, Thales, RSSB, NS Dutch Railways, the Go Ahead Group, Acalvio Technologies, Power Standards Lab and many more, the Summit will provide a unique opportunity for asset owners and cyber subject matters to convene and create actionable dialogue.

"Transport in Europe provides for the movement needs of over 700 million people and associated freight." And that is just Europe. The Keynote Presentation, provided by Stephen Cummins, Head of Rail Cyber Security, DFT, United Kingdom, participants will have the unique opportunity to hear first hand about the "The Government’s Role in Partnership with Industry." 
Taking place at 9:10am - 9:50am Mar 14 at the Millennium Gloucester Hotel in London, this is your opportunity to hear how Government and industry are working together to achieve this and what more needs to be done. 
Details ° Cyber remains one of the top threats to the UK’s economic and national security. Like much of the UK’s national infrastructure, the transport sector is a potential target for cyber attack. ° The National Cyber Security Strategy for 2016-21 sets out an ambitious approach to achieve security in cyber space. This is based on defending people and businesses, deterring adversaries and developing skills and capabilities. ° The Government can’t do this alone – citizens, business and organisations have a part to play. This is particularly true for the rail sector, where several organisations are involved in the operation of a safe, secure and reliable railway network. ° The Government wants this network to be secured against cyber attacks and to gain assurance that necessary action is being taken to identify, manage and mitigate cyber risks.     

The Department for Transport Head of Cyber Security will also contribute to the Cyber Senate panel session including Network Rail and RSSB on "Government and Industry- Creating a Culture of Awareness." Panellists will answer questions such as: 
° How are industry and Government working together to create a culture of awareness? 
° What is working best for you in your area of responsibility?
° What is the one change you would make if you had no limits to improve awareness of cyber security?

Furthermore, industry leaders including the DFT will also contribute to 
Securing IOT and IIOT - Playing Catch-Up in the 21st Century
5:20pm - 5:50pm Mar 14

How can we ensure IOT and IIOT security and integrity? 
° Are we seeing any standardisation in the manufacturing process i.e. building devices on an agreed upon open
° Are we seeing IT security incorporating safety into their threat modeling?
° Is IT consulting with OT on how to do so?
° How can we facilitate the required convergence more effectively?

Cyber Security and Safety- Ensuring operational integrity
2:30pm - 3:00pm Mar 15

° Understanding the interdependencies between safety and security
° How do we integrate these functions?
° Do we speak the same language?
° Should we develop a translation mechanism or agree on a common terminology?
° What are the impacts of human factors

Powered by Bizzabo

Tuesday, 29 November 2016

Train hacking, safety and cyber security and IOT security discussed at 2nd Annual Rail Cyber Summit

Advanced connectivity and the digitisation of future rail systems will provide greater levels of efficiency and optimisation, reduce carbon footprints and deliver greater value to asset owners, shareholders and passengers. However the integration and implementation of ERTMS, ETCS and CBTC systems, the connected interdependence of the next generation rail eco system introduces new vulnerabilities to infrastructure historically isolated from cyber attacks. The proliferation of machine to machine sensors, the Internet of Things and the convergence of IT and Operation Technologies – two very different disciplines, has extended the attack surface dramatically. From insider threats to malware to the manipulation of electromagnetic interferences, the industry has a new challenge to ensure the safety and reliability of the UK and European rail transport sector.  "Transport in Europe provides for the movement needs of over 700 million people and associated freight." Join the Cyber Senate on March 14th and 15th in London for an in-depth discussion on the current and future threat, how the industry is responding , the absolute importance of “Security by Design,” the challenges that bridging IT and OT bring in deploying enterprise facing architecture and how to further develop a culture of awareness. 
Powered by Bizzabo

Tuesday, 8 November 2016

Cyber Security for digital rail Europe

The Cyber Senate are pleased to announce new Thought Leaders for the 2nd Annual Rail Cyber Security Summit in London March 14th and 15th.

Now in its second year, the event will take place in London United Kingdom, and will feature a range of experts from the rail transport industry, as well as leading Government and global cyber security subject matter leaders and academics working in the field.

We are pleased to announce the addition of Chris Roberts, Chief Security Architect, Acalvio Technologies, who will be leading "an interactive set of discussions around the whole environment that is transportation, work on a variety of attack vectors, talk people through what they HAVE done, and what they are planning on doing…..they will talk results, and about a lot of the attacks they've been doing in the US." Mr Roberts wont be giving any names away, but you can expect a thorough interactive discussion and we will also be including him in several panel sessions addressing IOT/IIOT, Cyber Security and Safety - a look at integration, interdependence and convergence, along with Supply Chain and 3rd party risk.

We are also pleased to announce Simon Tonks, CIO for Porterbrook, a rolling stock leasing company, who is involved in industry efforts to achieve a cybersecurity strategy for rail, to procure a cyber-secure implementation of ERTMS and to consider rolling stock architectures from a security perspective.

Also we are welcoming Johnny Schute, Office of Rail and Road, Deputy Director, Policy, Strategy and Planning. He is responsible for safety policy, regulatory enforcement, occupational health, risk management, inspector competence and compliance. Mr Schute will give us a snapshot on the "Maturity levels of rail cyber security, what is needed, where we would like to be versus where we are and how we intend on getting there."

Places on this exclusive Summit are limited, we suggest early registration to avoid disappointment! 

2nd Annual Rail Cyber Security Summit 

London England
14th & 15th March 2017
Sponsored by Thales

The Cyber Senate are strategic alliance partners with the U.S ICS ISAC. As specialists in cyber security for critical national infrastructure, our platforms encourage debate, include multiple panel sessions and educate industry throughout Europe and North America. We have worked with the DOE, DHS, NSA, UK CERT and many more. References and testimonials are available at 

Our prestigious speakers include the following with many more announcements shortly!

Stephen Cummins
Head of Rail Cyber Security
Department for Transport (DfT), United Kingdom
Thorsten Borrmann
Infrastructure Management, Control-Command and Signalling systems, Approval Management for Railway Signalling Systems
DB Netz AG
Anthony Cross
Head of Electronic Security
London Underground
Lies Alderlieste
NS Dutch Railways
Chris Blask
ICS ISAC and Cyber Space Research Institute Webster University
Tom Lee
Deputy Director of Standards & Professional Head of CCS
Stefan Katzenbeisser
Professor, Heading of Security Engineering group
TU Darmstadt

Chris Roberts
Chief Security Architect
Acalvio Technologies

Gertjan Tamis
Information Security Officer
NS Dutch Railways

Johnny Schute
Deputy Director, Policy, Strategy and Planning
Railway Safety Directorate ORR

Simon Tonks
Head of IT
Porterbrook Leasing Company

For more information contact
or call + 44 (0)207 096 1754 

2016 sold out with representatives from the Rail Operators, Government, Cyber Security Solution providers and industry leading consultants and integrators. 

2017 ICS Events include:
  • 2nd annual ICS Cyber Security Nuclear Summit UK May 22-24th
  • 4th annual ICS Europe London September 19-20
  • 4th annual ICS USA conference October 3-4. 
Contact us for more information