AI Safety, CPS Protection & OT Safety for Mission Critical Infrastructure

Cyber Senate HomeJamison Nesbitt2026-03-19T10:10:12+00:00

Loading...

Rail Cybersecurity, Grounded in Operational Reality

A working forum for rail cybersecurity

Welcome to Cyber Senate

CyberSenate brings together the people responsible for securing rail systems — operators, infrastructure leaders, and suppliers working across complex, long-lifecycle environments.

The focus is simple: how cybersecurity works in practice.

Not frameworks in isolation, but how systems are actually protected, monitored, and recovered when things go wrong — across networks, control systems, and supplier ecosystems.

Built around real-world rail operations

Rail systems don’t fail in theory — they fail in live environments, under pressure, across interconnected systems and suppliers.

CyberSenate exists to reflect that reality.

Discussions focus on operational systems, incident response, supplier integration, and the day-to-day challenges of keeping rail services running safely and securely.

Core areas of focus

Securing operational rail systems
Managing risk across supplier ecosystems
Responding to incidents under real-world constraints
Bridging IT and OT in long-lifecycle environments

From the Summits

Selected moments and discussions from recent Rail Cybersecurity Summits.

EVENTS

PODCASTS

WEBINARS

Raising the Bar: Defining “Good” Cyber Assurance in Rail OT – From Compliance to Confidence
Gallery

Raising the Bar: Defining “Good” Cyber Assurance in Rail OT – From Compliance to Confidence

By Jamison Nesbitt|2026-02-20T13:02:31+00:00February 20th, 2026|Categories: Rail Cyber Speakers 2026, Rail Cybersecurity News|Tags: critical infrastructure protection, Cyber Assurance, Cyber Assurance Maturity, Cyber Resilience Act, Cyber Resilience in Rail, Governance Risk and Compliance (GRC), IEC 63452, Industrial Cybersecurity, Mission-Critical Infrastructure, operational technology security, OT Assurance, OT Lifecycle Security, Product Security Assurance, Rail Cyber Risk, Rail Cybersecurity, Rail Infrastructure Controllers, Rail Infrastructure Security, Rail Maintainers, rail operators, Rail OT Security, rail regulation, Rail Sector Cybersecurity, Rail Standards and Compliance, Rail Suppliers, rail supply chain security, Rail Systems Resilience, regulatory compliance, Risk and Compliance, Safety and Security in Rail, Security Engineering in Rail, UK Cyber Security and Resilience Bill|

Darin Gray Principal Assurance Engineer (System Safety & Cyber Security) NCB Assurance Biography [...]

Beyond the Mirror: Achieving Total Onboard Visibility
Gallery

Beyond the Mirror: Achieving Total Onboard Visibility

By Jamison Nesbitt|2026-02-16T13:41:19+00:00February 16th, 2026|Categories: Rail Cyber Speakers 2026, Rail Cybersecurity News|Tags: Alex Cowan, CAN bus security, embedded system security, ethernet monitoring, HIDS in rail, holistic monitoring strategy, host-based IDS, IEC 63452, mirror port limitations, Multifunction Vehicle Bus, MVB Security, on-board network monitoring, onboard intrusion detection, rail cyber defence, rail cyber resilience, Rail Cybersecurity, Rail OT Security, rail threat detection, railway digital infrastructure, railway network visibility, RazorSecure, Rolling Stock Cybersecurity, serial bus monitoring, switch-based monitoring, Train Communication Networks, Transport Cybersecurity|

Alex Cowan CEO RazorSecure Biography Alex Cowan founded RazorSecure in 2015 following a career in [...]

Securing Multifunction Vehicle Bus (MVB)
Gallery

Securing Multifunction Vehicle Bus (MVB)

By Jamison Nesbitt|2026-02-16T09:25:52+00:00February 16th, 2026|Categories: Rail Cyber Speakers 2026, Rail Cybersecurity News|Tags: Cyber Resilience Act, Cyber-Physical Systems, Embedded Systems Security, IEC 61375, Industrial Control Systems Security, Multifunction Vehicle Bus, MVB Security, NIS2 rail, operational technology security, Rail Cybersecurity, Rail Infrastructure Protection, Rail Network Security, Rail OT Security, Rail Risk Management, Rail Safety and Security, rail supply chain security, Rail Systems Engineering, Railway Signalling Security, railway standards, Rolling Stock Cybersecurity, Secure-by-Design Rail, TCMS Security, Train Communication Networks, Train Control and Monitoring System, Transport Cybersecurity|

Jyrki Keurulainen CTO EKE-Electronics Ltd. Biography Jyrki Keurulainen is the Chief Technology Officer [...]

CRA impact for railway and open points
Gallery

CRA impact for railway and open points

By Jamison Nesbitt|2026-02-02T16:03:12+00:00February 2nd, 2026|Categories: Cyber Senate News, Rail Cyber Speakers 2026, Rail Cybersecurity News|Tags: CRA regulation, critical infrastructure protection, Cyber Resilience Act, cybersecurity policy rail, EU Cyber Resilience Act, European rail regulation, IEC 62443 rail, IT OT convergence, long lifecycle systems, Mission-Critical Infrastructure, NIS2 rail, operational resilience rail, OT Security, product security requirements, rail asset owners, rail compliance, Rail Cybersecurity, rail engineering risk, rail governance, rail operators, rail regulation, rail standards, rail supply chain security, rail technology suppliers, railway cybersecurity, railway digital resilience, regulatory interpretation, Risk Management, rolling stock security, safety critical systems, Secure-by-Design Rail, signalling security, supplier management, Transport Cybersecurity|

Eddy Thesee Vice President, Group Products & Solutions Cybersecurity Alstom Biography Eddy Thesee [...]

NIS2 Oversight & Supervision in Rail
Gallery

NIS2 Oversight & Supervision in Rail

By Jamison Nesbitt|2026-02-04T12:29:52+00:00January 26th, 2026|Categories: Rail Cyber Speakers 2026, Rail Cybersecurity News|Tags: compliance challenges, cross-border rail, cyber resilience, cyber risk governance, cybersecurity inspection, digital rail systems, ERTMS, ERTMS BL3, EU rail sector, infrastructure protection, legacy rail systems, national competent authorities, NIS2, NIS2 implementation, NIS2 oversight, NIS2 supervision, operational resilience, Rail Cybersecurity, rail operators, rail regulation, rail supervision, rail supply chain, regulatory enforcement, regulatory oversight, safety-critical infrastructure, secure by design, supervisory practices, system upgrades, technology modernisation|

Anika Vonk Senior Cybersecurity Inspector Ministry of Infrastructure and Water Management Biography I [...]

Incident Response Under Pressure: What Rail Can Learn from Mature OT & Safety-Critical Sectors
Gallery

Incident Response Under Pressure: What Rail Can Learn from Mature OT & Safety-Critical Sectors

By Jamison Nesbitt|2026-02-04T10:00:50+00:00January 26th, 2026|Categories: Rail Cyber Speakers 2026, Rail Cybersecurity News|Tags: Crisis Decision-Making, Critical Infrastructure Security, Cross-Sector Learning, Cyber Incident Management, Cyber-Physical Systems, I’d recommend trimming it down to: incident response, Incident Recovery, incident response, nuclear sector lessons, operational resilience, operational technology security, or a separate inter, or tags aligned only to your Rail Cybersecurity Summit taxonomy, OT Incident Response, OT security governance If you want a shorter / tighter set (e.g. 8–12 tags for performance), OT Security Operations, Rail Cybersecurity, Rail Operations, rail resilience, Rail Safety, safe return to service, safety critical systems, SOC Operations, SOC operations Say the word if you want: tags optimised purely for search|

Kenny Holmes Head of Group Cyber Operations Nuclear Decommissioning Authority [...]

Francisco Lozano Ovejero | Head of R&D | Enyse
Gallery

Francisco Lozano Ovejero | Head of R&D | Enyse

By Jamison Nesbitt|2026-01-21T14:28:47+00:00January 21st, 2026|Categories: Rail Cyber Speakers 2026, Rail Cybersecurity News|Tags: cybersecurity architecture, cybersecurity resilience, cybersecurity standards, interlocking systems, legacy rail systems, operational resilience, Operational Technology, Rail Cybersecurity, Rail Operations, Rail OT Security, rail performance and safety, rail system architecture, rail system integration, railway cybersecurity, safety critical systems, secure signalling, signalling systems, vulnerability management|

Francisco Lozano Ovejero Head of Research and Development Enyse Biography Francisco is the [...]

Lucia Capogna | Cybersecurity and Software Assurance Team Leader | Visiting Professor in Cybersecurity and Operational Technology | Systra
Gallery

Lucia Capogna | Cybersecurity and Software Assurance Team Leader | Visiting Professor in Cybersecurity and Operational Technology | Systra

By Jamison Nesbitt|2026-01-20T12:15:49+00:00January 20th, 2026|Categories: Rail Cyber Speakers 2026, Rail Cybersecurity News|Tags: critical infrastructure, cybersecurity, digital risk, railway software, railway standards, railways, regulatory compliance, safety critical systems, safety vs security, secure by design, software assurance, software security|

Lucia Capogna Cybersecurity and Software Assurance Team Leader | Visiting Professor in Cybersecurity [...]

Expanding beyond cybersecurity

Some of the challenges facing rail systems sit beyond cybersecurity — in supplier ecosystems, system integration, and operational accountability.

These are addressed through the Operational Risk Council (ORC).

Rail Supply Chain Forum

A focused forum examining supplier ecosystems, integration risk, and long-lifecycle system accountability in rail environments.

👉 ben.reed@operationalriskcouncil.com

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.

Necessary

Always Enabled

Necessary cookies are absolutely essential for the website to function properly. These cookies ensure basic functionalities and security features of the website, anonymously.

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Others