Опубликован 08.11.2025
Как цитировать
Аннотация
This research investigates the integration of incident response planning and threat intelligence in transportation cybersecurity operations, emphasising the unique threat landscape faced by critical transit infrastructures. The study employs a mixed-methods approach combining structured interviews with cybersecurity practitioners in the transportation sector and a thematic analysis of incident response plans across multiple modal systems. The key findings reveal that organisations with dynamic threat-intelligence capabilities achieve more resilient incident response outcomes, characterised by reduced detection-to-containment times and improved post-incident learning. The conclusions assert that embedding real-time threat intelligence into incident response planning enhances operational readiness and suggests a refined framework tailored to transportation systems. These insights contribute to the advancement of cybersecurity practices for vital infrastructure and articulate directions for future empirical work.
Библиографические ссылки
- García, L., & Ruiz, M. (2020). Cybersecurity governance in aviation and maritime transport infrastructures: OT-IT convergence and incident management. Journal of Transport Security, 13(2), 145-162.
- Ivanov, P., & Petrov, A. (2019). Threat intelligence frameworks: From reactive defence to proactive cyber-posture. International Journal of Cyber Strategy, 7(1), 23-39.
- Müller, H., & Schmid, T. (2018). Incident response planning and execution in critical infrastructure sectors. Journal of Critical Infrastructure Protection, 10(3), 97-111.
- Schmid, T., & Keller, F. (2021). Cyber incident preparedness in rail networks: Case studies and lessons learned from Central Europe. Transportation Cybersecurity Review, 4(1), 34-52.