Rail cyber security: reducing the risk of cyber-attack

Cyber security guidelines for the rail industry, to help it reduce its vulnerability to cyber-attack.


Rail cyber security: guidance to industry

This file may not be suitable for users of assistive technology. Request an accessible format.

If you use assistive technology (such as a screen reader) and need a version of this document in a more accessible format, please email Please tell us what format you need. It will help us if you say what assistive technology you use.


This guidance sets out the principles and a general good practice approach to cyber security for the rail industry.

It incorporates bespoke advice about railway-specific systems, as well as more general advice on how the sector can reduce its vulnerability and protect against the growing threat of cyber-attack.

Published 15 February 2016