Illinois DoT and Cybrbase collaborate on lower-cost cybersecurity

Six of the state's smaller, rural transit agencies will take part in pilot project
By Adam Hill June 2, 2025 Read time: 2 mins
Smaller transit agencies are "routinely left out of the cybersecurity conversation" (© Phuttaphat Tipsana | Dreamstime.com)

Illinois Department of Transportation (IDoT) is to pilot a group-based cybersecurity vulnerability assessment across six small, and mid-size, rural Illinois transit agencies.

IDoT will work with transportation infrastructure cybersecurity firm Cybrbase with these local agencies, which often have relatively few staff and limited budgets, and are "routinely left out of the cybersecurity conversation".

The pilot will examine where security risks might be and help to mitigate them before they compromise public safety, transportation systems and municipal operations.

The idea is to do this at a "significantly lower" cost than traditional cybersecurity audits, using Cybrbase’s proprietary NIST-CRR-based platform, which is powered by AI.

Cybrbase says it "aims not only to bolster local defences but also to serve as a model, showcasing how state-level transportation agencies, insurance risk pools, and transit agencies can work collaboratively with their local transit agencies to create a more resilient transportation ecosystem".

A recent Mineta Transportation Institute (MTI) study - Does the Transit Industry Understand the Risks of Cybersecurity and are the Risks Being Appropriately Prioritised? - revealed persistent cybersecurity gaps in transit agencies in general, but particularly in small and rural transit agencies across the US.

It noted that "many of these agencies are challenged by outdated technology, and limited resources—making them particularly susceptible to cyberattacks". 

Scott Belcher, senior advisor at Cybrbase, MTI research associate, and former CEO of ITS America, says: “As a transportation leader, IDoT is closely watched by other agencies around the nation who may not be aware that cybersecurity vulnerabilities exist among their transit agencies. This initiative is intended to close that gap.”

The local agencies in the pilot include Decatur Public Transit System, Piatt County Public Transportation, QC Metrolink, Reagan Mass Transit and Warren County Public Transportation.

Each of them will complete its assessment independently and confidentially, but is expected to share best practices across the cohort.

AI Mass Transit & MaaS Detection, Monitoring & Machine Vision

Related Content

  • May 27, 2022
    Africa transport projects win ITF green awards
    Cash prizes will be spent on data collection to make decarbonisation case in Uganda and Kenya
    Read More
  • June 30, 2021
    Smart Cities: a journey, not a destination
    As technologies evolve, cities of the future should prepare for expansion by establishing scal­able systems, suggest Benjamin Ho and James Birdsall of Parsons
    Read More
  • May 29, 2014
    The role of GIS in climate change resiliency
    Climate change will pose global and local challenges and that includes risks to the transportation infrastructure. Climate change adaptation and resiliency has captured the attention of the transportation community for some time now. Because transportation infrastructure is often designed to last for 30, 50, or 100 years or even longer, transportation professionals are concerned not only about the impact on our existing investments, but also how to design more durable transportation systems for the future
    Read More
  • August 18, 2015
    Preparing for unpredictable precipitation
    ITS solutions are helping streamline winter road maintenance for Delaware and Illinois, two states that must deal with dynamic weather and varying snowfall totals. Andrew Bardin Williams reports. Wilmington and Newark (pronounced new-ark) are two vastly different cities that sit on opposite ends of Delaware. Newark is a sleepy university town of roughly 30,000 residents abutting the state’s western border with Maryland and Pennsylvania, and often gets confused with its larger namesake in New Jersey.
    Read More

Highlighted Content