{% text "preview_text" label="Preview Text This will be used as the preview text that displays in some email clients", value="", no_wrapper=True %}


READ IN BROWSER

12/03/2021
linkedin facebook twitter instagram
WorkScoop
The Department of Homeland Security had teased new cyber directives for railroads. Now, we know what to expect. A California city reconsiders cyber. This is CyberScoop for December 3, 2021.

Plans to improve rail security unveiled

U.S. rail companies must commit more attention and resources to cybersecurity under Transportation Security Administration directives announced Thursday. The new requirements include that surface rail owner and operators designate a cybersecurity coordinator; report a cybersecurity incident to the Department of Homeland Security's cybersecurity agency within 24 hours; complete a vulnerability assessment; and create a plan to respond to cybersecurity incidents. The directives will cover approximately 80 percent of freight rail and 90 percent of passenger rail, according to a DHS official. Tonya Riley has the latest.


A Message From AWS Educate

With over 1,500 institutions and hundreds of thousands of students who use AWS Educate, we wanted to take you on a trip around the world and highlight how students are learning and innovating with the cloud. Learn more.


Where the plans come from...

DHS Secretary Alejandro Mayorkas announced that TSA would be rolling out directives for surface transportation in an October speech at the Billington cybersecurity summit. Early plans for the directives, which would have required companies to report incidents within 12 hours, received criticism from industry and Republicans. In October, Republicans led by Sen. Rob Portman of Ohio called for DHS’s OIG to investigate the directives, citing industry complaints that the agency should “give adequate consideration to feedback from stakeholders and subject matter experts who work in these fields and that the requirements are too inflexible." A DHS official pushed back against the concerns in a call with reporters, noting that the requirements are baseline best cybersecurity practices many companies already follow. Read more.


Palo Alto pursues changes to cybersecurity strategy

Elected officials in Palo Alto, California, on Monday night voted to adopt the recommendations of an audit of the city’s cybersecurity and risk-management practices, particularly regarding its disaster recovery planning and database management. The vote by the Palo Alto City Council followed the Sept. 30 publication of the audit, which found that while the Silicon Valley community is capable of mitigating cybersecurity risks on a day-to-day basis, its Information Technology Department lacks both formalized risk management practices and a documented disaster recovery plan in the event of a major cyber incident such as a ransomware attack. Benjamin Freed has more at StateScoop.


Tweet Of The Day

Image

Hey, watch it.


Want more? Catch our events for all things workforce!
{% widget_block rich_text 'unsubscribe' label='Unsubscribe' overridable=true no_wrapper=true %} {% widget_attribute 'html' %} Copyright (c) 2019 WorkScoop, All rights reserved.

{{ site_settings.company_name }}
{{ site_settings.company_street_address_1 }}
{{ site_settings.company_city }} {{ site_settings.company_state }} 20036

Update your email preferences
Unsubscribe {% end_widget_attribute %} {% end_widget_block %} {# {% widget_block rich_text 'unsubscribe' label='Unsubscribe' overridable=true no_wrapper=true %} {% widget_attribute 'html' %} You received this email because you are subscribed to {{ subscription_name }} from {{site_settings.company_name}}. If you prefer not to receive emails from {{site_settings.company_name}} you may unsubscribe or set your email preferences. {% end_widget_attribute %} {% end_widget_block %} #}