Railroad Infrastructure Security

Similar documents
EMERGENCY SUPPORT FUNCTION (ESF) 13 PUBLIC SAFETY AND SECURITY

Appendix 3 Disaster Recovery Plan

2 ESF 2 Communications

COUNTERING IMPROVISED EXPLOSIVE DEVICES

Critical Information Infrastructure Protection Law

Business Continuity: How to Keep City Departments in Business after a Disaster

Science & Technology Directorate: R&D Overview

Table of Contents. Sample

A Practical Guide to Avoiding Disasters in Mission-Critical Facilities. What is a Disaster? Associated Business Issues.

HOTEL RESILIENT Plan ahead stay ahead. With support from the German Government through

REGIONAL UTILITY COORDINATION PLAN. Portland, Oregon / Vancouver, Washington Metropolitan Area

TSA/FTA Security and Emergency Management Action Items for Transit Agencies

How AlienVault ICS SIEM Supports Compliance with CFATS

Heavy Vehicle Cyber Security Bulletin

Best Practices for Campus Security. January 26, 2017

Corporate Security & Emergency Management Summary of Submitted 2015 Budget From Rates

Cyber Risk in the Marine Transportation System

PASS Your HMA / HMO Exam Incident Management

Department of Homeland Security

Sharing of Information & Intelligence on the Importation & Transportation of Food

Emergency Support Function #2 Communications Annex INTRODUCTION. Purpose. Scope. ESF Coordinator: Support Agencies: Primary Agencies:

BUSINESS CONTINUITY MANAGEMENT PROGRAM OVERVIEW

Emergency Management & Disaster Planning

Business Continuity Management Program Overview

Government-Industry Collaboration: 7 Steps for Resiliency in Critical Infrastructure Protection

Virginia Department of Transportation Hampton Roads Bridge-Tunnel Action Plan Implementing the Independent Review Panel Recommendations

National Cyber Incident Response - Architectural Concepts

Kenneth Brown, Facilitator

Emergency Management BCERMS Orientation

Prepare your Emergency respons, continuity plan, recovery plan

IA2. Flood (Including Dam Failure)

The Office of Infrastructure Protection

PTLGateway Data Breach Policy

Emergencies: Protecting Staff & Assets. Presented By: Tom Heebner, CSP, ARM, ABCP AVP / Risk Consultant HUB International Limited

3.4 DISASTER RECOVERY (L , M.3.9, comp_req_id 806)

Security Guidelines for the Electricity Sector

NATIONAL CAPITAL REGION HOMELAND SECURITY STRATEGIC PLAN SEPTEMBER 2010 WASHINGTON, DC

Business Continuity Planning Keeping Pace with New Technology

South East Region THIRA

External Supplier Control Obligations. Cyber Security

Critical Infrastructure Protection (CIP) as example of a multi-stakeholder approach.

Bradford J. Willke. 19 September 2007

MARYLAND S STRATEGIC GOALS AND OBJECTIVES FOR HOMELAND SECURITY

Threat and Vulnerability Assessment Tool

PD 7: Homeland Security Presidential Directive 7: Critical Infrastructure Identification, Prioritization, and Protection

UNCLASSIFIED. National and Cyber Security Branch. Presentation for Gridseccon. Quebec City, October 18-21

Panel 1 National CSIRT Experience

STRATEGIC PLAN. USF Emergency Management

Member of the County or municipal emergency management organization

PREPARED STATEMENT OF ERNEST R. FRAZIER, SR., ESQ. AMTRAK, CHIEF OF POLICE AND SECURITY DEPARTMENT

Cyber Security Summit 2014 USCENTCOM Cybersecurity Cooperation

Inter-American Port Security Cooperation Plan

Number: USF System Emergency Management Responsible Office: Administrative Services

National Policy and Guiding Principles

CYBER SECURITY POLICY REVISION: 12

HUMANITARIAN COORDINATION TRAINING. Safety & Security in Humanitarian Coordination

University of Pittsburgh Security Assessment Questionnaire (v1.7)

Introduction to Business continuity Planning

Chapter 1. Chapter 2. Chapter 3

S&T Stakeholders Conference

National Incident Management System and National Response Plan. Overview

Florida State University

COUNTERING IMPROVISED EXPLOSIVE DEVICES

Management. Port Security. Second Edition KENNETH CHRISTOPHER. CRC Press. Taylor & Francis Group. Taylor & Francis Group,

Homeland Security Perspective on Modeling and Simulation (M&S)

STRATEGY ATIONAL. National Strategy. for Critical Infrastructure. Government

Best Practices for Incident Communications: Simplifying the Mass Notification Process for Government

Special Action Plan on Countermeasures to Cyber-terrorism of Critical Infrastructure (Provisional Translation)

Community-Based Water Resiliency

Cyber Security Program

Resiliency & Maritime Security Preparedness Planning

Department of Homeland Security Science and Technology Directorate

Security Guideline for the Electricity Sub-sector: Physical Security Response

July 31, University of Maryland Emergency Management Faculty Staff Essentials

Planning for Resiliency. June 20, 2017 Richard Tetreault, PE WSP USA Office Lead VT, NH, and ME

Emergency Response for Demand Response Transportation Systems

NIBS Building Innovation 2014

NERCPI Regional Cyber Disruption Planning.

Addressing Vulnerabilities By Integrating Your Incident Response Plans. Brian Coates Enaxis Consulting

Alternative Fuel Vehicles in State Energy Assurance Planning

5.9 MULTI-MODAL SECURITY

Cyber Security Strategy

Bay Area UASI Homeland Security Goals and Objectives

Modelling & Simulation for National Security

THE WHITE HOUSE. Office of the Press Secretary. EMBARGOED UNTIL DELIVERY OF THE PRESIDENT'S February 12, 2013 STATE OF THE UNION ADDRESS

Standard CIP Cyber Security Critical Cyber Asset Identification

Shared Responsibility: Roles and Responsibilities in Emergency Management Geoff Hay

V A Physical Security Assessments LESSONS LEARNED

Standard CIP Cyber Security Critical Cyber Asset Identification

Emergency Operations Center Management Exercise Evaluation Guide

Presented by Joe Burns Kentucky Rural Water Association July 19, 2005

Transportation Security Risk Assessment

Security Guideline for the Electricity Sector: Business Processes and Operations Continuity

Homeland Security Institute. Annual Report. pursuant to. Homeland Security Act of 2002

JSC THE JUSTICE & SAFETY CENTER. Snapshot 2014

National Response Plan & Nuclear/Radiological Incident Annex. OSC Readiness Training November 17, 2004

Security of Information Technology Resources IT-12

Energy Assurance Energy Assurance and Interdependency Workshop Fairmont Hotel, Washington D.C. December 2 3, 2013

Statement for the Record

Advanced IT Risk, Security management and Cybercrime Prevention

Transcription:

TRB Annual Meeting January 14, 2002 Session 107 - Railroad Security William C. Thompson william.thompson@jacobs.com 402-697-5011

Thanks to: Bob Ulrich Dr. William Harris Byron Ratcliff Frank Thigpen John Ross George Biedenbender

Creating awareness of security issues Railroad History Incident Handling Process Considerations when updating your emergency response plan Threats and Mitigation of Other Risks Countermeasure Study and Research Needs

Railroads and Natural Disasters In their 175+ years of operation, US railroads have encountered many natural disasters that have damaged or destroyed track and equipment Snow & Ice Storms Floods Landslides Earthquakes Hurricanes & Tornadoes

Railroad Response to Natural Disasters Developed staff and equipment capabilities to deal with natural disasters Established opportunities for contractors to augment their internal staff Negotiated agreements to carry trains of competitive railroads under agreed conditions in case of line blockage

Railroads and Hazmat Major carriers of hazardous materials Crews are trained in response to hazmat releases in accidents Have protocols in place to call on shippers of hazmat and consignees to augment their staff in controlling and clean up after releases

Railroads and Criminal Attacks Train robberies were once common Railroads established police forces with independent police authority and with provisions for cooperation with government law enforcement offices Criminal acts against railroads are rare

Reasons for Attacks on Railroads Terrorists may seek to endanger the population by attacking trains carrying hazardous or nuclear materials Terrorists may seek to disrupt essential governmental shipments of military equipment by attacking trains or routes essential to that traffic Terrorists may seek to disrupt the US economy by disrupting commercially essential shipments

How can Terrorists Attack Railroads Railroad tracks and switches are vulnerable to attacks by unbolting of joint bars or misalignment of switches Railroad bridges are vulnerable to attack by explosives Railroad tunnels are vulnerable to attacks by explosives and chem-bio agents Railroad control and dispatching systems are vulnerable to explosive and to cyber attacks

Railroad Response to Terrorists Increase awareness of railroad management and employees to vulnerabilities and training of responders Increase surveillance of critical assets Seek inputs from government agencies on threats and responses to threats Take appropriate measures to share information between railroads as through Information Sharing and Analysis Centers

Railroad Incident Response Process Notification & secure site Advise management First step backwards Check haz-mat Employee and public exposure Send in investigation team Determine root cause * Clean-up Return to service

Derailment Investigation Process (SOP) Safety first Train, track & crew documentation Drug testing and interviews Site sketch, drawings or video Event recorder evaluation Determine point of derailment Determine first car derailed Analysis Determine cause

Continuous Improvement (also Quality Process or PDCA) Identification Analysis Determine alternative solutions Develop solutions Implementation Evaluation

Critical Lesson Learned: Everybody involved in the management, investigation and cleanup of the incident must communicate clearly and absolutely ensure that each correctly understands the other. Effective and precise communication is critical to minimizing further risk.

Considerations when updating your emergency response plan Following can be used as a checklist

Threat Assessment Vulnerability Analysis Risk Management Decision Security Countermeasures

Threat Assessment At what level are we operating? Low Moderate Significant High

Assessment Process Awareness is key

Threat Assessment From whom do you get your threat information? How do you disseminate the information? Exactly what does the information mean? Evaluate the Source Categorize the information Prioritize

Vulnerability Assessment Who? What? When? Where? How? As related to the railroad or transit.

Assessment Process Who can be called a legitimate threat? Disgruntled employees, vendors or contractors Disaffected individuals Individual with intent to commit a felony

Assessment Process What are areas of maximum regret? Mass Casualties Facility Failure Medium to long term denial of service

Assessment Process When are your assets most vulnerable Identify your most critical assets Level of control/interface with external infrastructure Interactions

Availability of Friendly Forces Internal security forces? Coordination with federal, state and local authorities? Coordination with contractors? Coordination with on-call experts? Do you have a plan in place that can be activated immediately? Command and Response Structure in place

How can a threat be carried out against your critical assets What assets do you control? What are your redundant assets? What is the status of your detection and sensor systems?

Risk Management Decisions What is the threat? Where are you vulnerable? What type of countermeasures are deployed? Who will deploy? Who is in control? Does everyone involved understand what is being communicated?

Risk Management Decisions Primary Objectives Prevent casualties Ensure integrity of assets Provide for continued operations Reduce costs

Risk Management Decisions Assess countermeasures in place How is police or internal security force trained, organized and equipped? How is security force deployed? Do you have a central communications and command system in place?

Risk Management Decisions Is your response plan coordinated among all friendly forces? Does your response plan have redundancies in systems, procedures and processes? Does your response plan allow for changes in threat level?

Security Countermeasures Systems and plans must be designed to: Deter Detect Delay Deny / defend Defeat

Security Countermeasures Security Triad Detection Assessment Response

Security Countermeasures Detection Human Assets Electronic Assets Canine Assets

Security Countermeasures Assessment Determine Extent of Incident Single event vs. multiple attacks Critical nature of event How disruptive Does your communication system allow you to make an assessment? Have you tested under stress?

Security Countermeasures Response and Reconstitution Post incident mode Accurate communication Identified multiple evacuation routes Established containment systems Known roles and responsibilities

Security Countermeasures Response and Reconstitution Crisis management plans in place Consensus building by all respondents Interdependence of responding agencies Preparedness drills

Training An effort that must be accomplished Unit level training Individual level Team level Organizational level Equipment training Organizational Equipment vendors Outside organizations

Countermeasure Study and Research Needs Staffing, planning and decision support Real-time assessment, detection & warning Systems analysis Stability Redundancy and system integration Cross-functional impacts (cyber) Personal protective equipment Air handling systems Decontamination

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback