scope:

This standard applies to TfL and LU staff when performing or overseeing O&M activities on SSR Operational Systems and Assets.

This standard refers to the Cyber Security Detection measures applied to all London Underground Operational Systems and Assets supporting the SSR network.

The control measures and requirements set out within this document must be applied to each Operational System or Asset and must be maintained and updated through the life of the system

Purpose

This document sets out the requirements for implementing and maintaining Cyber Security Detection to support Operations & Maintenance (O&M) on the Sub-Surface Railway (SSR).

It details the requirements for developing, implementing, maintaining and continuously improving control measures contributing to the identification of Cyber Security events that may disrupt the normal operation of the SSR operational railway and/or degrade the safety, reliability, functionality and/or performance levels of the Operational Systems and Assets.

This document complements the requirements detailed within the SSR Operational Technology Cyber Security Governance Standard S1754 (under development), Protection Standard S1752 and Response and Recovery Standard S1753.