Cybersecurity Assurance

Strengthening cybersecurity

Mitigating risks

Safeguarding rail operations

Why should you consider Cybersecurity Assurance as part of your Railway Assurance Process?

Cyberattacks pose a significant threat to UK railway infrastructure and train operating companies, they disrupt essential services, compromise safety, and damage public trust.

The rail network is increasingly reliant on interconnected digital systems for operations such as signalling, ticketing, and train control, making it vulnerable to malicious activities like ransomware, data breaches, and operational disruptions. A successful cyberattack could not only halt operations but also jeopardise passenger safety and lead to financial losses and reputational harm.

The National Risk Register identifies that a cyberattack on the UK national critical infrastructure is a significant risk to the UK stability and prosperity.

How could independent assurance help you manage potential cyber threats?

Independent assurance against TS50701 (the existing standard – Railway Applications Cybersecurity) is vital to mitigate these risks.

By independently reviewing your current practices against the standard, reporting where you are compliant, will allow you to improve your overall management of any cybersecurity threats.

It ensures that rail operators and infrastructure providers adopt rigorous security practices, assess vulnerabilities, and maintain resilience against evolving cyber threats, safeguarding both operational integrity and passenger confidence.

NCB is uniquely placed to support you

Our highly competent and experienced railway systems engineers are industry leaders in assessing a risk-based approach to safety. This experience gives us a unique basis to assess an organisation’s approach to cybersecurity by assessing compliance to TS50701.

NCB is proud to have an industry leading cyber assessment team including a member of the BSI committee GEL/9/-/6 ‘Railway Electrotechnical Applications – Standards relating to Cybersecurity, Artificial Intelligence and Machine Learning’ and the International Electrotechnical Commission (IEC) Writing Group for the new international cybersecurity standard IEC63452.

NCB as an independent assessment organisation is part of the formation of what the future global standards will look like in this space giving us the unique position of being able to support organisations in developing their cybersecurity assurance strategies.

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Cookie	Duration	Description
_ga	2 years	This cookie is set by Google Analytics to distinguish users in the category "Analytics".
_gat_gtag_UA_XXXXXXXXX_X	1 min	This cookie is set by Google Analytics to throttle request rate, in the category "Analytics".
_gid	24 hours	This cookie is set by Google Analytics to distinguish users in the category "Analytics".