Stakeholder: Updated TSA directives for passenger, freight rails expand agency authority on cyber risk management

The Transportation Security Administration’s three updated security directives for passenger and freight rail systems contain revisions that may signal significant implications for the agency’s authority over cybersecurity risk management processes, according to cyber leader Norma Krayem.

“It’s important for public/private owners and operators to understand that TSA did not simply reissue the same Security Directives (SDs) today on transit, passenger rail and freight rail,” Krayem told Inside Cybersecurity.

Krayem is vice president and chair of Van Scoyoc Associates’ Cybersecurity, Privacy...