The Transportation Systems Sector Cybersecurity Framework Implementation Guidance and its companion workbook provide an approach for Transportation Systems Sector owners and operators to apply the tenets of the National Institute of Standards and Technology Cybersecurity Framework to help reduce cyber risks. Specifically, organizations may use the implementation guidance to:
- Characterize their current cybersecurity posture.
- Identify opportunities for enhancing existing cyber risk management programs.
- Find existing tools, standards, and guides to support Framework implementation.
- Communicate their risk management issues to internal and external stakeholders.
Organizations that lack a formal cybersecurity risk management program could use the guidance to establish risk-based cyber priorities.