Cyber Security in OT

Built upon the industry-standard Purdue Model for Industrial Control Systems, this tool allows you to navigate every layer of a railway's digital backbone. Journey from the corporate Enterprise Zone (Level 5), where business planning occurs, down through the heavily fortified Industrial Demilitarized Zone (DMZ), and into the heart of the Safety-Critical Zone (Level 0), where signals and switches physically control train movements. See firsthand how robust segmentation creates a 'defense-in-depth' security posture, a core principle mandated by leading cybersecurity standards like TS 50701 and the NIS2 Directive.

Discover how these crucial regulations are applied in practice. Explore the principles of TS 50701, which mandates a 'security-by-design' lifecycle approach—from initial concept to decommissioning—ensuring cybersecurity is not an afterthought. Understand the legal obligations of the NIS2 Directive, which forces essential entities like railways to implement stringent risk management measures, secure their supply chains, and report significant incidents to authorities within 24 hours.

This is more than a static diagram. Activate different operational scenarios to trace how data flows across the network during routine operations, remote maintenance, or even a cyberattack. See how the architecture is designed to contain threats and protect the most critical systems. Click on any component to access its detailed profile, including its function, Criticality Level rating, and an AI-generated cybersecurity risk assessment. Uncover potential vulnerabilities, explore recommended mitigations, and understand the intricate relationship between operational technology and cybersecurity in the modern railway.