Latest news with #Engineers
Forbes
2 days ago
- Business
- Forbes
Cybersecurity Isn't A Retrofit—It's A Foundation
Ian Bramson is the Vice President of Global Industrial Cybersecurity of Black & Veatch. For all the boardroom rhetoric about cybersecurity being a priority, it still gets short shrift in new industrial construction. Capital projects often ignore cybersecurity or include it in name only, relegating it to the status of an afterthought, something bolted on after construction. However, retrofitting cybersecurity into a live, connected environment can be expensive, risky and disruptive. Why does this keep happening? It stems from a gap in the strategic planning phase. Engineers and project teams focus on cost control and schedules, so cybersecurity rarely gets treated like other operational technology (OT) systems in capital projects. Safety officers, for instance, help shape asset design from day one. Cyber experts deserve similar authority because cyberattacks can lead to safety failures that affect people, communities and the environment. Misperceptions Around Cost And Scope Some mistakenly assume that integrating cybersecurity early adds cost when the fact is that a security-by-design approach avoids costly retrofits and unplanned disruptions later on. Yet, when capital committees face tight financial scrutiny, they tend to treat anything that feels extra—especially something they don't fully understand—as a threat to the budget. So, if they choose to build in cybersecurity later at a higher cost or skip it altogether and face the consequences, those costs may not show up in the initial budget, but they will show up eventually. Let's recognize that industrial cybersecurity is about more than protecting data; it's about protecting people, uptime and physical infrastructure. If a cyberattack compromises a valve or a safety mechanism, the results can be catastrophic, including environmental disasters, equipment failure and even loss of life. Although capital teams take these risks seriously, they don't view them as cyber risks. Framing cybersecurity as a process safety issue changes the conversation. These teams already understand HAZOPs, failure modes and emergency protocols. Cyber fits directly into those same frameworks. It doesn't require a new language; it just requires translating cybersecurity into the language that capital teams already speak. The Risk Of Assumption The most dangerous assumption in capital projects is believing that 'someone else' is taking care of cybersecurity. Industrial builds include thousands of interconnected devices and systems from multiple suppliers. If nobody is looking at potential systemwide vulnerabilities, that's an invitation to trouble. The owners assume the OEMs or the engineering, procurement and construction (EPC) contractor have it covered; the EPC contractor assumes suppliers and OEMs are locking down their equipment. But no one's really checking, and even when they do their part, it only covers one piece of the puzzle. New vulnerabilities are bound to surface once all the components are woven together. Instead, we should think about protecting systems—including monitoring, asset management and segmentation—and move beyond just ensuring that an individual component is secure. We need shared accountability, where everyone does their part. Ultimately, the owner must step up because it's their name on the line when something goes wrong. That means defining requirements immediately, embedding them into contracts, enforcing them during commissioning and validating them before handoff. Bringing Cyber Into The Build What does it look like to integrate cybersecurity into a capital project? It starts at the top, where your leadership must treat cybersecurity as a safety and reliability issue. When executives make clear that cybersecurity is nonnegotiable, it sets the tone for everyone involved. From there, project teams need a playbook to know where cybersecurity fits. They need clear expectations: What does being cyber secure mean at pre-FEED, at FEED, at design review, during construction and commissioning and, lastly, handover? Spell it out in familiar terms. Translate cyber milestones into the stages that project teams already plan around. Procurement needs to play a role as well. Cyber requirements must be written into RFPs, contracts and vendor agreements. This includes specs for secure-by-design, clean build protocols and validation procedures. Training is also essential. Capital teams don't need to become cybersecurity experts, but they do need to understand how cyber affects their world. A construction lead should know what insecure remote access looks like, and a procurement manager should be able to flag risky vendor practices. Finally, cybersecurity must be verified throughout the project, not just at the end. That means testing during construction, requiring commissioning to include cyber validation and ensuring that the handoff process includes documentation of known vulnerabilities, mitigation measures and accepted risk. Why Now? Capital project teams can't afford to treat cybersecurity as tomorrow's problem. Consider the following: • Attackers now use AI to scan for vulnerabilities, create tailored phishing attacks and automate exploitation at scale. If your adversaries are using AI and you're not, you're already behind. • Digitalization is expanding the attack surface. OT systems are now connected to the cloud, enterprise systems and each other. Every new IIoT device becomes a potential entry point, and traditional isolation models break down. • Regulatory requirements and standards around industrial cybersecurity are becoming more stringent. Compliance is becoming table stakes, whether it's the NIS2 Directive in the EU or the NERC CIP regulation in the U.S. Failing to integrate cybersecurity can now mean legal and financial exposure. • Finally, the market itself is demanding better. Investors, insurers and acquirers scrutinize cybersecurity as part of due diligence. If a new asset isn't secure, it could affect the valuation or even derail the deal. The Clear Message The build phase is your one shot at complete visibility and control. After that, complexity explodes and your ability to make changes without disruption only gets harder. Waiting until the end isn't just inefficient—it's negligent. Organizations that integrate cybersecurity from the start will be safer, more resilient and, ultimately, more valuable. So, don't start the discussions after commissioning a project or suffering a breach. Make this front and center, starting with the project strategic planning and capital committee table, when the stakes and opportunity are greatest. Because in the age of AI, you can't afford not to build it right. Forbes Technology Council is an invitation-only community for world-class CIOs, CTOs and technology executives. Do I qualify?
The Independent
3 days ago
- The Independent
Travel disruption after major signalling failure at London Waterloo
A major signalling failure at London Waterloo has caused severe disruption, with trains unable to use 14 platforms at the station, according to a rail company. South Western Railway (SWR) asked customers not to travel on its services on Monday morning in a statement posted on social media. Passengers have been told that they will not be able to claim a taxi ride from SWR but will be allowed to use their Monday dated tickets on Tuesday. The train company said: 'Due to a major signalling failure at London Waterloo, please do not travel on our services this morning. 'The failure of the equipment that routes trains in and out of the station means we cannot use platforms 1 to 14 at London Waterloo at this time, significantly limiting capacity. 'Engineers are on site attempting to restore the use of the platforms, but with very few trains able to move in and out of London Waterloo and trains and crew already displaced, services across the network are severely disrupted. 'While we are hoping to restore some services later in the day, these are still likely to be subject to delays and alterations. 'Customers should please check back for updates. We are very sorry for the disruption to journeys this morning.' SWR's live train timetable shows a string of delays and cancellations.
The Independent
3 days ago
- The Independent
London Waterloo disruption live: ‘Do not travel' warning issued by SWR after major signalling failure
Railway passengers have been warned 'not to travel' on Monday morning after a major signalling failure at London's Waterloo station has caused commuter chaos. Disruption is expected to continue for the rest of the day due to 14 platforms at the busy station being out of service due to the failure. According to National Rail, the incident was first reported shortly after 5.30am. Taking to social media, angry customers have complained of the situation being a 'total shambles' while another said they were 'totally disgusted and distraught'. Due to the level of disruption, any unused tickets will be valid for Tuesday. In a statement on X, the railway operator said: 'Engineers are on sit attempting to restore the use of the platforms, but with very few trains able to move in and out of London Waterloo and crew already displaced, services across the network are severely disrupted.' It follows several days of disruption at Waterloo with platforms 1 to 14 also out of use for several hours on Saturday due to a signalling failure. South Western Railway's full statement: 'Due to a major signalling failure at London Waterloo, please do not travel on our services this morning. 'The failure of the equipment that routes trains in and out of the station means we cannot use platforms 1 to 14 at London Waterloo at this time, significantly limiting capacity. 'Engineers are on site attempting to restore the use of the platforms, but with very few trains able to move in and out of London Waterloo and trains and crew already displaced, services across the network are severely disrupted. 'While we are hoping to restore some services later in the day, these are still likely to be subject to delays and alterations. 'Customers should please check back for updates. We are very sorry for the disruption to journeys this morning.' Athena Stavrou21 July 2025 08:54 'Do not travel' warning issued by SWR after major signalling failure at Waterloo A major signalling failure at London's Waterloo station has caused commuter chaos this morning, with disruption expected for the remainder of the day. South Western Railways has urged customers 'do not travel this morning' due to 14 platforms at the busy station being out of service due to the failure. They added that while they were hoping to restore some services later on Monday, they would still likely be subject to delays and alterations. Athena Stavrou21 July 2025 08:53
The Sun
3 days ago
- The Sun
‘Do not travel' warning as London's Waterloo hit by ‘major signalling failure' with trains unable to use 14 platforms
COMMUTERS have been warned "not to travel" to London's Waterloo as it's hit by a "major signalling failure". Platforms one to 14 are out of action due to an equipment breakdown that routes trains in and out of the station, South Western Rail said. The operator said: "Engineers are on site attempting to restore the use of the platforms, but with very few trains able to move in and out of London Waterloo and trains and crew already displaced, services across the network are severely disrupted." 1
Yahoo
3 days ago
- Yahoo
Major disruption at London Waterloo as SWR issues ‘do not travel warning'
A major signalling failure at London's Waterloo station has caused commuter chaos this morning, with disruption expected for the remainder of the day. South Western Railways has urged customers 'do not travel this morning' due to 14 platforms at the busy station being out of service due to the failure. In a statement on X, the railway operator said: 'Engineers are on sit attempting to restore the use of the platforms, but with very few trains able to move in and out of London Waterloo and crew already displaced, services across the network are severely disrupted.' They added that while they were hoping to restore some services later on Monday, they would still likely be subject to delays and alterations.
