Does the Transit Industry Understand the Risks of Cybersecurity and are the Risks Being Appropriately Prioritized? [Brief]

Belcher, Scott; Belcher, Terri; Grimes, James; Holmstrom, Lusa; Souders, Andy; San Jose State University. College of Business. Mineta Transportation Institute

doi:10.31979/mti.2025.2405

Advanced Search

Select up to three search categories and corresponding keywords using the fields to the right. Refer to the Help section for more detailed instructions.

Search our Collections & Repository

Advanced Search
Custom Query

All these words:

For very narrow results

This exact word or phrase:

When looking for a specific result

Any of these words:

Best used for discovery & interchangable words

None of these words:

Recommended to be used in conjunction with other fields

Language:

Dates

Publication Date Range:

to

Document Data

Title:

Document Type:

Library

Collection:

Series:

People

Author:

Clear All

Query Builder

Query box

Clear All

For additional assistance using the Custom Query please check out our Help Page

ROSA P serves as an archival repository of USDOT-published products including scientific findings, journal articles, guidelines, recommendations, or other information authored or co-authored by USDOT or funded partners. As a repository, ROSA P retains documents in their original published format to ensure public access to scientific information.

i

Does the Transit Industry Understand the Risks of Cybersecurity and are the Risks Being Appropriately Prioritized? [Brief]

2025-04-01
By Belcher, Scott ; Belcher, Terri ; Grimes, James ; ...

[PDF-830.15 KB]

English

Details Related Documents You May Also Like

Details:

Creators:

Belcher, Scott ; Belcher, Terri ; Grimes, James ; Holmstrom, Lusa ; Souders, Andy

Belcher, Scott ; Belcher, Terri ; Grimes, James ; Holmstrom, Lusa ; Souders, Andy Less -
Corporate Creators:

San Jose State University. College of Business. Mineta Transportation Institute
Corporate Contributors:

United States. Department of Transportation. University Transportation Centers (UTC) Program ; United States. Department of Transportation. Office of the Assistant Secretary for Research and Technology

United States. Department of Transportation. University Transportation Centers (UTC) Program ; United States. Department of Transportation. Office of the Assistant Secretary for Research and Technology Less -
Subject/TRT Terms:

[+]

Computer Security Policy Public Transit Risk Management Security
Publication/ Report Number:

Project 2405
DOI:

https://doi.org/10.31979/mti.2025.2405
Resource Type:

Brief
Geographical Coverage:

United States
Edition:

Research Brief
Corporate Publisher:

Mineta Transportation Institute
Abstract:

The intent of this study is to assess the readiness, resourcing, and capabilities of public transit agencies to detect, identify, be protected from, respond to, and recover from cybersecurity vulnerabilities and threats. This study is an update of the 2020 Mineta Transportation Institute (MTI) study, “Is the Transit Industry Prepared for the Cyber Revolution? Policy Recommendations to Enhance Surface Transit Cyber Preparedness.” In the previous study, the authors found that the transit industry was ill-prepared for cybersecurity attacks. Unfortunately, after four years and the development of new, and often free, resources, the situation has not markedly improved. In fact, this survey, which included a larger number of small rural transit agencies, shows that they lag far behind their larger peers. The increasing sophistication of cybercriminals, in combination with a greater reliance on technology within the transit industry, puts the industry at greater risk than in 2020. This study reviews and updates the state of best cybersecurity practices in public surface transit; outlines U.S. public surface transit operators’ cybersecurity operations and the resources available to them; reviews U.S. policy on cybersecurity in public surface transportation; and provides policy recommendations that address gaps or identify issues for Congress, the Executive Branch, public surface transit agencies, and their associations and other supporting organizations. Research methods include an online survey and oral interviews with public surface transit agencies in the United States as well as oral interviews with members of the Executive Branch (e.g., the U.S. Department of Transportation, the U.S. Department of Homeland Security), as well as research of literature published in periodicals. There is an exponentially expanding gap between the cybersecurity preparedness that should exist and the growing threats from increased reliance on technology and the opportunities by malicious actors. This research provides information that can be used to help close that gap.
Format:

PDF
Funding:

69A3551747127
Collection(s):

University Transportation Centers
Main Document Checksum:

[+]

urn:sha-512:897613dc35d71ef14e0d43ac46b27e129bb1c2648fd18c75cbb7c020174602025fb250e8e0b277051379a84db56bf169dca1dc17e1c4d2fe103b50c7699f699b
Download URL:

https://rosap.ntl.bts.gov/view/dot/83460/dot_83460_DS1.pdf
File Type:

No Additional Files

More +

Does the Transit Industry Understand the Risks of Cybersecurity and are the Risks Being Appropriately Prioritized? [Brief]

Details:

Supporting Files

Related Documents

You May Also Like