APTA Offers Cybersecurity Awareness Training for Transit Professionals
2/2/2026
Public transportation agencies are increasingly targeted by cyber threats. These often involve email compromise, data breaches, ransomware, counterfeit hardware, and supply chain risks.
“As cyber threats continue to evolve, training the transit workforce to identify and respond to those risks is no longer optional—it’s essential,” said APTA’s Polly Hanson, senior director of security, risk, and emergency management.
To keep the industry up-to-date, APTA partnered with the Center for Critical Infrastructure Protection (CCIP) at ENSCO to create a 30-minute online cybersecurity awareness training, custom-built for transit employees.
The course is intended to equip participants with the tools necessary to recognize potential threats, safeguard sensitive information, and contribute to a resilient, security-conscious workplace. The course covers:
- Key cybersecurity concepts such as confidentiality, integrity, and availability
- Real-world examples of cyber incidents in the transportation sector
- How to identify common attack methods including phishing, malware, and social engineering
- How to apply best practices for password management, safe internet and email use, and data protection
- The importance of physical security, multi-factor authentication, and timely incident reporting
The course is instructed by Erin Plemons, director, CCIP at ENSCO, Inc. APTA is planning to roll out additional, specialized cybersecurity courses for the public transit industry.