Background Image
 
English Deutsch Español Français Italiano Português 日本語 한국어 繁體中文
Request a Demo
Claroty Toggle Search

CLAROTY STATE AND LOCAL GOVERNMENT

How Claroty Protects Transportation Systems

Claroty's unified platform provides the foundational visibility, risk management, and control needed to secure the cyber-physical systems (CPS) that support transportation operations, including rail, ports, aviation, and traffic management centers. By integrating deep asset inventory, exposure management, and secure remote access, the platform enables agencies to meet regulatory requirements and strengthen operational resilience against digital threats that impact service continuity and public safety.

Talk to an expert View the Solution Overview Explore State and Local resources

Supporting Compliance & Regulations

An icon of a checkmark on a computer monitor.

Federal Regulations & Legislation

Claroty’s support for the entire CPS security journey simplifies compliance with the requirements set forth by TSA, FAA, CISA, MTSA, relevant executive orders, and relevant directives.

An icon of checkmarks beside a list of items.

Associated Standards & Frameworks

The Claroty Platform supports compliance with standards and frameworks including IEC 62443, IEC 63452, TSA (SD 1580-21-01C, SD 1580/82-2022-01C), and more.

Securing the Converged Transportation Ecosystem

The modern transportation sector runs on converged cyber-physical systems (CPS) – the interconnected OT, IT, and IoT networks that underpin critical infrastructure. Claroty enables agencies to operationalize a CPS Protection Program that shifts security from reactive response to proactive resilience. This approach gives teams the visibility and context needed to minimize disruptions to public services, protect ROI, and ensure the continuous operation of critical transit infrastructure.

OVERVIEW

These physical access control systems (PACS) are the first line of defense, regulating entry into high-security zones such as airfields, rail dispatch centers, and server rooms.

RISK

Insecure readers can be exploited to bypass network segmentation, allowing attackers to enter the OT network and move laterally into corporate IT systems.

PROTECTION OUTCOME

Claroty secures physical-to-digital boundaries by enforcing zero-trust principles, ensuring only verified users can access sensitive systems while maintaining a complete, auditable record of all entry-point activity.

Badge Readers
OVERVIEW

This category encompasses mission-critical airfield runway lights, tunnel illumination, and station safety lighting managed by automated industrial controllers.

RISK

Cyber disruptions to lighting can create immediate life-safety hazards, such as grounded flights or tunnel accidents, often caused by unauthorized configuration changes.

PROTECTION OUTCOME

Claroty maintains the integrity of safety-critical lighting through real-time anomaly detection, instantly alerting operators to unauthorized commands or configuration shifts that could compromise public safety.

Lighting Systems
OVERVIEW

Highly automated conveyor and sorting networks at airports rely on programmable logic controllers (PLCs) and sensors to move thousands of items accurately.

RISK

Convergence has bridged the gap between legacy OT systems and IT networks, creating a new threat vector for attackers to exploit and stall operations.

PROTECTION OUTCOME

Claroty reduces the risk of operational bottlenecks by providing deep protocol visibility, allowing agencies to identify and prioritize vulnerabilities within sorting systems before they can be exploited to ground flights.

Baggage Handling
OVERVIEW

These safety-critical systems manage air quality and smoke extraction in underground transit corridors, utilizing specialized industrial protocols.

RISK

If compromised, these assets can be manipulated to disable life-safety fans during emergencies or introduce toxic air levels, leading to immediate public safety crises and the total closure of critical transit corridors.

PROTECTION OUTCOME

Claroty ensures safe emergency operations by eliminating unmanaged, internet-facing entry points and replacing them with encrypted, policy-governed access that protects life-safety systems from remote sabotage.

Tunnel Ventilation
OVERVIEW

Vertical transportation systems within major hubs are often managed by building management systems (BMS) to ensure consistent passenger flow.

RISK

Escalators are often invisible assets on the network—undiscovered or poorly classified. Without a complete inventory and clear understanding of each asset’s function, organizations can’t accurately assess or prioritize security risk.

PROTECTION OUTCOME

Claroty eliminates security blind spots by automatically discovering and categorizing all connected building systems, providing a unified view that allows teams to manage maintenance and security without service interruptions.

Escalators
OVERVIEW

BAS/BMS represents the centralized "brain" that orchestrates HVAC, power, and safety systems across massive transit terminals and airport facilities.

RISK

A compromise of the BAS can lead to cascading failures across multiple subsystems, resulting in operational disruptions that impact public trust and safety.

PROTECTION OUTCOME

Claroty unifies facility-wide security governance by integrating OT-specific insights with existing IT workflows, enabling agencies to coordinate responses across departments and contain threats before they escalate into facility-wide failures.

BAS/BMS
OVERVIEW

These critical substations convert and distribute high-voltage electricity specifically to power trains and light rail transit systems.

RISK

Sabotaging a TPSS can stall entire rail lines; these assets are governed by strict NERC CIP standards due to their impact on the Bulk Electric System.

PROTECTION OUTCOME

Claroty streamlines regulatory compliance and grid reliability by providing automated asset inventories and continuous monitoring, ensuring that power distribution remains safe and fully documented for audits.

Traction Power Substations (TTPSS)
OVERVIEW

Real-time information displays used for passenger wayfinding, emergency notifications, and traffic alerts across highways and transit hubs.

RISK

Hackers may target signage to change displayed information, which can cause mass confusion, operational disruption, or public safety issues.

PROTECTION OUTCOME

Claroty protects public trust by monitoring display configurations and detecting unauthorized firmware changes, ensuring that critical safety information remains accurate and reliable during emergencies.

Digital Signage
OVERVIEW

Intelligent Transportation System (ITS) sensors monitor bridge structural health, tolling data, and real-time traffic flow to optimize roadway management.

RISK

These distributed sensors often use insecure protocols that cannot be tracked by standard IT tools, leaving critical networks vulnerable to exploitation.

PROTECTION OUTCOME

Claroty enhances infrastructure resilience by mapping these diverse sensors to mission-critical outcomes, allowing teams to prioritize remediation based on the sensor's actual impact on traffic safety and revenue.

IoT Sensors
OVERVIEW

Networked video surveillance systems used for security monitoring, automated tolling, and tracking across all transportation modes.

RISK

Cameras are frequently internet-facing and poorly patched; they can be used as a "jumping-off" point for attackers to move into more sensitive signaling networks.

PROTECTION OUTCOME

Claroty reduces the attack surface of surveillance networks by identifying high-risk exposures and recommending compensating controls such as network segmentation, keeping mission-critical transit paths secure even when software or firmware cannot be immediately patched.

IP Cameras
OVERVIEW

Massive cargo-handling machinery at maritime ports that relies on complex digital control systems to move global freight.

RISK

Unauthorized access to crane controllers can halt port logistics entirely, representing a form of asymmetric warfare that targets economic continuity.

PROTECTION OUTCOME

Claroty safeguards global supply chains by enforcing least-privilege access and network segmentation within port networks, ensuring that cargo operations remain insulated from cyber-driven sabotage.

Cranes
An illustration of a cityscape depicting how Claroty protects cyber-physical systems related to transportation.

Redefining Transportation Resilience: Protecting Land, Sea, and Air

An illustration of a train on rails.

Rail

Modern rail relies on tightly interconnected systems, where disruption can impact safety and halt critical corridors. As complexity increases, agencies need automated solutions that bridge the IT/OT gap and strengthen resilience while maximizing existing security investments.

An illustration of a ship on water.

Maritime

Ports operate as legacy-heavy ecosystems where disruption can quickly ripple across global supply chains. As adversaries shift to operational disruption, agencies need deep protocol visibility to protect critical machinery and reduce downstream costs from congestion and insurance exposure.

An illustration of an airplane.

Aviation

Airports are CPS hubs spanning radar, airfield, runway, and baggage systems where continuous availability is critical. Even minor disruption can ground operations, making automated compliance and reporting essential to meet TSA, FAA, and CISA mandates while reducing audit burden.

An illustration of a truck.

Highways

ITS networks depend on signals, tolling, and sensors to manage traffic flow. Disruption can cascade into gridlock and safety risks, driving the need for zero-trust segmentation and compensating controls to maintain movement while avoiding costly shutdowns.

Protecting State, Local, and Educational Infrastructure

30+
Awards

Public sector coalitions, information-sharing groups, and other prestigious third parties continually recognize Claroty for our cyber-physical security leadership and innovation.

40+
Partners in Our Ecosystem

Our expansive partner ecosystem helps you solve your most pressing security problems, in an efficient, cost-effective way, eliminating potential for redundancy.

450+
Protocols Covered

Our coverage of over 450 XIoT protocols enables us to offer unmatched visibility — and, thus, protection — for every type of cyber-physical system in the public sector.

400+
Disclosures

Our award-winning threat research team is focused on disclosing ICS vulnerabilities as swiftly as possible to reduce risk and improve security globally.

Meet the Team

Our Products

xDome

Claroty xDome helps federal, state, and local governments reduce cyber risk and stay in compliance.

Learn more

CTD

Claroty Continuous Threat Detection (CTD) is a robust solution that delivers comprehensive cybersecurity controls for SLED environments.

Learn more

xDome
Secure Access

Claroty xDome Secure Access delivers frictionless, reliable, and secure remote access for internal and third-party personnel.

Learn more

Platform Integrations for Transportation Agencies

Cisco logo Crowdstrike logo Fortinet logo See All Partners

Explore State and Local Agency Resources

Browse All Resources
Reducing Risk in Transportation: Exposure Management & Proactive Incident Response
White Paper

Reducing Risk in Transportation: Exposure Management & Proactive Incident Response

Read More
Featured image for our Buyers Guide: The Ultimate Buyer's Guide for Transportation Cybersecurity Platforms
Buyer's Guide

The Ultimate Buyer's Guide for Transportation Cybersecurity Platforms

Read More
Featured image for our blog: Protecting Railways Using a Programmatic Approach
Blog / 6 min read

Protecting Railways Using a Programmatic Approach

Read More
Regulations

Claroty Demo

Ready to Secure Your CPS Environment?

Request a Demo
Claroty
LinkedIn Twitter YouTube Facebook