Case Study

Network Rail combines Security and

Operational Efficiency to create strategic advantage

Introduction

Network Rail is responsible for maintaining and improving the UK’s rail infrastructure, which is Europe’s fastest growing rail network. With millions of passengers relying on smooth operations across over 20,000 miles of track every day, it is crucial that Network Rail minimise downtime and provide a safe experience for passengers.

Their OT network is one of the largest in Europe, and has always been separate from the central IT network for security purposes. Whilst highly secure, this separation meant that it was a challenge to leverage valuable, real-time insights.

Network Rail needed a safe and reliable way to transfer critical data from their Operational Technology (OT) systems to their Information Technology (IT) systems.

With 4Secure’s support, Network Rail now have a solution that securely transfers data in real time, improves efficiency, and upholds the highest standards of security.

The Challenge: Securely Connecting OT and IT

Network Rail’s substations and SCADA systems generate vital operational data that is crucial for real-time analytics and proactive maintenance. However, transferring this data securely while keeping the OT environment isolated from external threats was a significant challenge. If a threat actor was able to gain access to the OT network through the IT network, it could cause chaos.

The Solution: Combining Security with Practical Data Transfer

Network Rail turned to 4Secure because of their experience in creating secure connections that unlock critical insights. 4Secure provided a secure data transfer solution to enforce a one-way data flow through a data diode. This approach ensures that data can only move from OT to IT systems, physically and scientifically blocking any reverse transmission. A secure-by-design approach enabled Network Rail to safely and remotely analyse their operational data while keeping their OT environment protected.

4Secure provide expert advice promptly and proactively. We now have more information, more often, more securely. Passengers have already avoided delays as a direct result of this information.” – Daniel Rozday CEng | Senior Asset Engineer

The Reuslts: Security and Efficiency Combined

Real-Time Analytics: Secure access to data supports advanced decision-making, during the trial an overloaded line was proactively identified by asset management before power was lost, saving hundreds of minutes of delay which would have resulted while power was restored and trains were restarted.

Centralised Monitoring: Simplified data flow improves oversight and management. Detailed logs are sent to the Security Operations Centre’s SIEM in real-time, this has already allowed swift remote diagnosis of an IT fault.

Robust Security: Hardware and software safeguards ensure OT systems remain isolated and follow zero-trust principles to ensure data is transferred securely.

Proactive Maintenance: Better visibility allows for predictive maintenance, reducing downtime. Circuit breaker operating times and fault currents are returned automatically to maintenance every time, better than manual collection of data years apart.

Supporting Network Rail's Mission

With 4Secure’s help, Network Rail strengthened both their cybersecurity and operational efficiency. The solution allows them to safely leverage their data while protecting their critical infrastructure. Knowing that their data is secure and can now be accessed at any time, Network Rail have the confidence and insights needed to support their strategic mission.