Strengthening cybersecurity for a new train fleet

A rail leasing company (ROSCO) engaged Encompass Engineering to conduct a cybersecurity risk review for a newly introduced train fleet. With modern trains increasingly relying on digital systems and automation, ensuring protection against cyber threats is more critical than ever.

Background

As train technology advances, so do potential cyber threats. The owners and operators of the new fleet wanted to ensure their systems were protected, so they asked Encompass Engineering to conduct a comprehensive security assessment. Our goal was to identify vulnerabilities and opportunities to strengthen defences and develop mitigation strategies for any potential risks.

We began with a detailed review of the manufacturer’s security measures, examining their effectiveness in safeguarding onboard systems. Working closely with the train manufacturer and operator – we facilitated in-depth workshops to explore potential cyber risks.

By working together, we identified likely attack scenarios and developed mitigation strategies tailored to the unique challenges of the specific fleet.

To test these strategies, cybersecurity experts performed a penetration test on the fleet’s systems by simulating cyberattacks to uncover any weak spots. We supported this process, ensuring any vulnerabilities were identified and a mitigation plan was developed to avoid future occurrences.

The challenges

One of the biggest challenges was balancing robust cybersecurity measures with the operational needs of the train service. Security improvements had to be effective without disrupting performance, reliability or passenger experience.

Another challenge was ensuring alignment among all stakeholders. The manufacturer needed to integrate cybersecurity solutions without causing production delays, while the operator required strong security measures without affecting day-to-day operations. We helped bridge these perspectives, facilitating discussions and ensuring a unified approach to security.

The result

After extensive workshops, penetration testing and stakeholder collaboration, we delivered comprehensive reports detailing our findings and recommendations. Key documents included:

  • Penetration testing report – A thorough breakdown of identified vulnerabilities, along with expert recommendations for addressing them.
  • Requirements matrix – A structured overview mapping security objectives against actual assessment findings to ensure clarity and accountability.
  • Cyber security action plan – A practical, step-by-step guide outlining immediate and long-term security measures to maintain system integrity.

Through a structured and collaborative approach, Encompass Engineering significantly strengthened the cybersecurity of the new train fleet. Our rigorous testing, expert analysis and coordinated efforts helped fortify the trains against potential cyber threats.

This project provided the ROSCO and the train operator with a clear understanding of cybersecurity risks and a practical roadmap for ongoing protection. It also demonstrated the importance of proactive planning, expert guidance and teamwork in securing modern rail systems. By taking action now, the train operators and manufacturers ensured a safer, more resilient future for their fleet and passengers.

Protect your fleet – Strengthen cyber resilience today

Cybersecurity threats in rail are evolving, and proactive protection is essential to safeguard your operations, assets, and passengers. Whether you are introducing new trains, upgrading your systems, or conducting a risk review, Encompass Engineering can help.

To learn more about how we can help enhance your operational cybersecurity, get in touch – together, we can build a more secure future for your fleet.

Got a project in mind?

Find out how our team of specialist engineers can help