Illinois DoT and Cybrbase collaborate on lower-cost cybersecurity

Six of the state's smaller, rural transit agencies will take part in pilot project
By Adam Hill June 2, 2025 Read time: 2 mins
Smaller transit agencies are "routinely left out of the cybersecurity conversation" (© Phuttaphat Tipsana | Dreamstime.com)

Illinois Department of Transportation (IDoT) is to pilot a group-based cybersecurity vulnerability assessment across six small, and mid-size, rural Illinois transit agencies.

IDoT will work with transportation infrastructure cybersecurity firm Cybrbase with these local agencies, which often have relatively few staff and limited budgets, and are "routinely left out of the cybersecurity conversation".

The pilot will examine where security risks might be and help to mitigate them before they compromise public safety, transportation systems and municipal operations.

The idea is to do this at a "significantly lower" cost than traditional cybersecurity audits, using Cybrbase’s proprietary NIST-CRR-based platform, which is powered by AI.

Cybrbase says it "aims not only to bolster local defences but also to serve as a model, showcasing how state-level transportation agencies, insurance risk pools, and transit agencies can work collaboratively with their local transit agencies to create a more resilient transportation ecosystem".

A recent Mineta Transportation Institute (MTI) study - Does the Transit Industry Understand the Risks of Cybersecurity and are the Risks Being Appropriately Prioritised? - revealed persistent cybersecurity gaps in transit agencies in general, but particularly in small and rural transit agencies across the US.

It noted that "many of these agencies are challenged by outdated technology, and limited resources—making them particularly susceptible to cyberattacks". 

Scott Belcher, senior advisor at Cybrbase, MTI research associate, and former CEO of ITS America, says: “As a transportation leader, IDoT is closely watched by other agencies around the nation who may not be aware that cybersecurity vulnerabilities exist among their transit agencies. This initiative is intended to close that gap.”

The local agencies in the pilot include Decatur Public Transit System, Piatt County Public Transportation, QC Metrolink, Reagan Mass Transit and Warren County Public Transportation.

Each of them will complete its assessment independently and confidentially, but is expected to share best practices across the cohort.

AI Mass Transit & MaaS Detection, Monitoring & Machine Vision

For more information on companies in this article

Related Content

  • For software, sensors, and services, you can rely on Iteris
    August 26, 2022
    Santa Ana, CA-based Iteris will provide in-booth demonstrations illustrating how its comprehensive suite of software, sensors and consulting solutions meets agency staff and budgets where they are to scale revolutionary technologies for improved mobility, safety, equity and emissions in communities across the country. 
    Read More
  • Congestion pricing: the time to act is now
    August 20, 2024
    New York may have thrown a curveball on congestion pricing, but it is a proven global strategy for traffic management which cities should adopt, argues Wes Guckert of The Traffic Group
    Read More
  • Iteris to deliver BSP system in $6.8m deal 
    January 20, 2022
    Iteris will use its asset management service for intersections and arterials
    Read More
  • Outsourcing security weakness for Sweden’s driver and vehicle data
    October 24, 2017
    The security of driver and vehicle data hit the headlines this summer in Sweden and its authorities are still dealing with the fallout. David Crawford reports. epercussions from Sweden’s vehicle data outsourcing scandal continue to reverberate. Transportstyrelsen, the government’s transport agency, came under fire this summer for risking the personal security of over five million motorists by failing to implement full security checks on personnel in other countries to whom individual work packages could
    Read More

Highlighted Content