Strengthening cybersecurity for a new train fleet

A rail leasing company (ROSCO) engaged Encompass Engineering to conduct a cybersecurity risk review for a newly introduced train fleet. With modern trains increasingly relying on digital systems and automation, ensuring protection against cyber threats is more critical than ever.

Background

In an era where digital transformation is revolutionising the transport sector, modern trains are increasingly dependent on complex software systems, network connectivity and automation. These technological advancements offer major improvements in efficiency, performance, and passenger experience, but they also introduce new vulnerabilities to cyber threats. For rail operators and owners, safeguarding these systems is a technical necessity and essential to ensure a safe, uninterrupted service.

Recognising these challenges, a leading rolling stock leasing company (ROSCO) took a proactive step to secure its newly introduced train fleet. As cybersecurity risks become increasingly sophisticated and regulatory scrutiny intensifies, the company engaged Encompass Engineering to conduct a comprehensive cybersecurity risk assessment.

The goal was clear: evaluate the existing security defences, identify any system vulnerabilities, and develop a robust strategy to strengthen cyber resilience across the fleet.

Our approach

We began with a detailed review of the manufacturer’s security measures, examining their effectiveness in safeguarding onboard systems. Working closely with the train manufacturer and operator – we facilitated in-depth workshops to explore potential cyber risks.

By working together, we identified likely attack scenarios and developed mitigation strategies tailored to the unique challenges of the specific fleet.

To test these strategies, cybersecurity experts performed a penetration test on the fleet’s systems by simulating cyberattacks to uncover any weak spots. We supported this process, ensuring any vulnerabilities were identified and a mitigation plan was developed to avoid future occurrences.

The challenges

One of the key challenges was striking the right balance between robust cybersecurity measures and the operational demands of the train service. Security enhancements needed to be effective without compromising performance, reliability, or the passenger experience.

Another significant challenge involved aligning the priorities of all stakeholders. The manufacturer had to implement cybersecurity solutions without introducing delays to production, while the operator required strong protections that would not disrupt daily operations. Encompass Engineering played a crucial role in bridging these perspectives, facilitating constructive dialogue and ensuring a cohesive, unified approach to cybersecurity.

The result

After extensive workshops, penetration testing and stakeholder collaboration, we delivered comprehensive reports detailing our findings and recommendations.

Key documents included:

  • Penetration testing report – A thorough breakdown of identified vulnerabilities, along with expert recommendations for addressing them.
  • Requirements matrix – A structured overview mapping security objectives against actual assessment findings to ensure clarity and accountability.
  • Cyber security action plan – A practical, step-by-step guide outlining immediate and long-term security measures to maintain system integrity.

Through a structured and collaborative approach, Encompass Engineering significantly strengthened the cybersecurity of the new train fleet. Our rigorous testing, expert analysis and coordinated efforts helped fortify the trains against potential cyber threats.

This project provided the ROSCO and the train operator with a clear understanding of cybersecurity risks and a practical roadmap for ongoing protection. It also demonstrated the importance of proactive planning, expert guidance and teamwork in securing modern rail systems. By taking action now, the train operators and manufacturers ensured a safer, more resilient future for their fleet and passengers.

Protect your fleet – Strengthen cyber resilience today

Cybersecurity threats in rail are evolving, and proactive protection is essential to safeguard your operations, assets, and passengers. Whether you are introducing new trains, upgrading your systems, or conducting a risk review, Encompass Engineering can help.

To learn more about how we can help enhance the cyber resilience of your trains, get in touch – together, we can build a more secure future for your fleet.

Want confidence in your fleet’s cyber resilience?

Find out how our team of specialist engineers can help

Related Articles

Read more about Getting AVIS Placement Right: Why Location Matters

Getting AVIS Placement Right: Why Location Matters

When it comes to Automated Vehicle Inspection Systems (AVIS), there’s one factor that’s often overlooked – but absolutely critical: location. You can invest in...

Read more
Read more about Questions to Ask Before Investing in an AVIS

Questions to Ask Before Investing in an AVIS

Automated Vehicle Inspection Systems (AVIS) are often introduced with bold promises: faster inspections, better data, fewer breakdowns. But for many operators, the reality doesn’t...

Read more
Read more about Validating AVIS Data: Can You Trust What You See?

Validating AVIS Data: Can You Trust What You See?

Collecting data is easy. Knowing you can trust it – that’s where the challenge begins. Automated Vehicle Inspection Systems (AVIS) can capture thousands of...

Read more
Read more about Cybersecurity in Rail: Why Assurance Matters for Modern and Legacy Fleets

Cybersecurity in Rail: Why Assurance Matters for Modern and Legacy Fleets

Today’s trains are no longer just mechanical machines; they are sophisticated digital platforms. From onboard control systems and passenger Wi-Fi, to CCTV and remote...

Read more
Read more about Cybersecurity Risks in Legacy Rail Fleets: Why Older Trains Still Matter

Cybersecurity Risks in Legacy Rail Fleets: Why Older Trains Still Matter

As rail operators and train owners invest in new fleets with advanced digital systems, it’s easy for attention to move away from legacy rolling...

Read more
Read more about Keeping rail on track: why modern maintenance documentation is key to efficiency, safety and compliance

Keeping rail on track: why modern maintenance documentation is key to efficiency, safety and compliance

Having worked in rail for many years, we have seen many new methods and processes for train maintenance come and go. We’ve seen first-hand...

Read more