DHS Issuing New Cybersecurity Requirements to Transportation Sectors


As part of a 60-day “sprint” launched in September, DHS is adding cybersecurity information sharing requirements for the transportation sector. The Coast Guard is deploying cybersecurity personnel to U.S. ports, where 2,300 “maritime entities” are to share cybersecurity plans with them and follow up on any weaknesses identified in them. A TSA security directive to be issued later this year will require “higher risk” rail freight and transit companies to designate a cybersecurity contact, and to report incidents to CISA. TSA is also planning similar requirements for critical aviation industry players, including airport operators, passenger airlines, and cargo aircraft operators.