Rail Cyber Resilience Summit (RCRS)
Securing the Digital Railway: Moving from Reactive Defence to Predictive Resilience, Engineering Cyber Resilience Across Europe’s Rail Ecosystem
Research-led intelligence for operators, infrastructure owners, and suppliers securing rail operations in an era of ERTMS, IT/OT convergence, and escalating cyber threats
From Local System Health to End-to-End Rail Cyber Resilience
Rail is entering a critical inflection point. Accelerating IT/OT convergence, ERTMS deployment, expanding digital ecosystems, and rising geopolitical cyber threats are creating unprecedented systemic exposure. Our industry research reveals a dangerous gap between local system health and end-to-end operational resilience, where fragmented governance, identity sprawl, weak segmentation, and legacy infrastructure amplify cyber risk across the rail value chain.
The Rail Cyber Resilience Summit delivers urgent, practical intelligence on moving from reactive defence to predictive resilience, strengthening cyber security for rail operators. This is where operators, infrastructure owners, and suppliers align on early threat prediction, resilience engineering, behavioural cyber awareness, OT governance, and supply-chain risk mitigation. Through real-world case studies, live threat modelling, and executive-led insight, delegates will gain actionable strategies to anticipate incidents, prioritise investment, accelerate detection, and safeguard safe operations.
RSCRS is not just a discussion forum. It is where the strategic intervention in rail begins.
The Real Risk Rail is Underestimating
Cyber Incidents Don’t Fail Locally — they Propagate Systemically
In rail, availability, integrity, and timing are mission-critical. A one-minute delay can cascade
into network-wide disruption.
Yet many rail organisations still assess cyber risk in isolation:
-
Individual systems appear healthy
-
Local controls pass audits
-
Responsibility is distributed across multiple entities
But cyber events exploit the seams between systems, organisations, and suppliers.
This is where resilience breaks.
Local systems can look healthy, while end-to-end rail operations remain dangerously exposed.
Dutch National Infrastructure Owner, Solution Architect
The more digitised rail becomes, the more vulnerable it becomes, unless resilience is engineered in from the start.
Dutch Rail Operator,
Cybersecurity Lead
From Reactive Defence to Predictive Resilience
What RCRS Delivers
The Rail Cyber Resilience Summit focuses on operational outcomes in real-world scenarios and is not just a compliance checklist.
Delegates will explore how to:
-
Predict cyber events before operational impact
Moving beyond descriptive analytics to prescriptive, decision-driven security -
Design fail-safe operations during cyber crisis
Ensuring trains can safely continue or recover when systems degrade -
Engineer resilience into ERTMS and signalling environments
Addressing ownership, trust boundaries, and cross-border complexity -
Strengthen OT governance across IT-OT convergence
Translating policy into real operational control -
Reduce supply-chain and third-party cyber risk
From software integrity to minimum security baselines -
Build cyber-aware behaviour across the workforce
Turning people from liabilities into an active defence layer
Agenda Preview
Key Strategic Sessions for Rail Cyber Resilience
Keeping Trains Moving During Cyber Crisis
Designing operational continuity when digital systems are compromised, improving Cyber resilience in rail
Predicting the Next Cyber Event — Not the Last One
Applying analytics, data, and threat intelligence to anticipate attacks
Supply-Chain Cyber Risk in Rail
Why software integrity is now the highest-risk attack surface
ERTMS, Cyber Security & Responsibility
ERTMS cyber security: who owns the risk when signalling moves into the cab?
OT Governance in a Converged World
Railway OT cyber security, who patches, who waits, and who decides?
Changing the Cyber Mindset in Rail
Embedding security alongside safety — not after it
Who Should Attend
This Summit Is Designed For:
Rail Operators
-
CISOs & Heads of Cyber Security
-
Safety & Operations Directors
-
Digital & Transformation Leaders
Infrastructure Owners
-
Asset & Network Managers
-
Signalling & ERTMS Leads
-
OT & Control System Specialists
Suppliers & OEMs
-
Rolling stock manufacturers
-
Signalling & systems providers
-
Software, OT, and cyber vendors
If your decisions affect safe, reliable rail operations,
this summit is for you.
Why this Event is Different
Not a Vendor Showcase or talk shop, the premier rail cybersecurity conference to align principles on governance, risk and threat analysis, and the development of cybersecurity measures in rail.
-
Research-driven
-
Operator-led
-
Outcome-focused
-
Built around real incidents, not hypotheticals
Sessions are designed to surface uncomfortable truths, practical constraints, and actionable strategies in relation to rail IT OT convergence at Europe's leading rail cybersecurity conference.
What You Will Take Back
-
Clear insight into where rail cyber risk is actually accumulating
-
Practical approaches to resilience engineering
-
Frameworks to prioritise investment based on impact
-
Shared language to improve collaboration across the industry
-
Peer insight you cannot get from reports alone
Attendance is limited to maintain senior-level discussion.