SecurityScorecard to Provide Pipeline, Rail Operators Cybersecurity Assessment Capability Under TSA Contract

The Transportation Security Administration has awarded Alvarez and Carahsoft a contract to purchase subscriptions to SecurityScorecard’s automated cyber ratings platform. Carahsoft is a distributor of the cybersecurity risk management solution.

SecurityScorecard will provide pipeline and rail operators with access to the platform for automated monitoring and assessment of their public-facing internet applications and services and identification of system vulnerabilities and cyber threats.

Only private sector partners who decided to use the platform will receive access since the TSA does not require operators to utilize the subscription service, SecurityScorecard said.

Platform users will be provided with graded scorecards, allowing them to make informed decisions in mitigating cybersecurity risks and comply with their reporting obligations. SecurityScorecard will also submit reports to TSA regarding the cybersecurity vulnerabilities impacting the rail and pipeline sectors.

According to Sonya Proctor, assistant administrator of the TSA’s surface operations office, the capability will help secure critical infrastructure amid increasing cyber threats, supporting the agency’s security mission to stay ahead of U.S. adversaries.