Building a Cyber-Strong America in October and Beyond

October is National Cybersecurity Awareness Month. This year’s theme is Building a Cyber-Strong America, highlighting the need to strengthen the country’s infrastructure against cyber threats and ensuring resilience and security. The most common cybersecurity incidents threatening public transit agencies involve phishing, email compromise, data breaches, ransomware, counterfeit hardware, and supply chain risks.

The U.S. Cybersecurity and Infrastructure Security Agency (CISA), urges all small and medium businesses; agencies and service providers; and state, local, tribal, and territorial governments to take action to improve their cybersecurity.

APTA provides a number of resources and services to help members gain a better understanding of cybersecurity, including educational webinars and sessions at APTA conferences and the development of recommended and best practices.

In addition, APTA’s Security and Emergency Management Standards Program includes documents covering Securing Control and Communications Systems, Operational Technology Cybersecurity Maturity Frameworks, Enterprise Cybersecurity Training and Awareness, Developing Cybersecurity Programs, Managing Cloud Vendor Risk, and more. For additional information about the APTA Standards Program, contact standards@apta.com.

APTA’s Cybersecurity Fundamentals for Executives course provides actual cybersecurity scenarios that could threaten public transit agencies.

Additional resources can be found at:

https://www.transportation.gov/cio

https://www.transportation.gov/mission/office-secretary/office-chief-information-officer/cybersecurity-resources

For more information on cybersecurity in public transportation, contact Polly Hanson, APTA senior director, security, risk & emergency management, at phanson@apta.com.