Preparing your rail systems to meet cyber requirements without disrupting operations
CRA-Ready :
Integrating cybersecurity from the OT (Operational Technology) design stage
In urban rail, cybersecurity is no longer an option. With the entry into force of the Cyber Resilience Act (CRA), operators and manufacturers must ensure that their systems meet regulatory requirements throughout their entire lifecycle.
At LEROY Automation, the CRA-Ready approach goes beyond products alone: it covers secure engineering, documentation, maintenance, updates, and training, supporting operators in achieving safe and continuous operations.
The operational context: securing systems without interrupting traffic
On an urban line in continuous operation, interventions must fit within 1–2 hour maintenance windows. Every update or patch must be planned so as not to disrupt passenger service.
Key objectives:
Maintain availability ≥ 99.9%,
Ensure smooth operations despite CRA constraints,
Guarantee progressive and controlled CRA compliance.
CRA-Ready: More Than Just Product Compliance
LEROY Automation’s CRA-Ready philosophy is based on security by design:
Products are designed to reduce the attack surface,
Components are selected and secured from the design stage,
System lifecycles are continuously monitored with regular patches,
Customer teams are trained to maintain operational security.
The CRA is not an IT layer imposed on OT—it is a lever to structure and secure your industrial systems.
This approach allows cybersecurity to be integrated without compromising operations, while strengthening the resilience of existing OT architectures.
Concrete Solutions for Railway Operators
1. CRA Audit and Recommendations
Our OT audits analyze real architectures (PLCs, supervision systems, networks) and identify gaps with respect to CRA requirements.
The recommendations are pragmatic and schedulable, allowing deployment within maintenance windows without disrupting traffic.
Field example: an audit prioritized 5 critical actions on an operational line, all implemented in less than a month with no delays.
2. Secure PLC Hardening
LEROY Automation strengthens existing equipment through secure hardening:
Configuration and access security,
Reduction of attack surfaces,
Protection of critical functions.
Hardening is carried out gradually to adapt to operational constraints.
3. Comprehensive CRA-Ready Support
CRA compliance is an ongoing process:
Inventory of all software and hardware components,
Planning cybersecurity actions within maintenance windows,
Upskilling OT teams,
Documentation and product tracking in line with CRA requirements and IEC 62443-4‑1 certification.
This approach transforms cybersecurity into a foundation for OT structuring rather than just a constraint.
CRA-Ready: Guaranteed Continuous Operation
Railway cybersecurity should never become a disruption factor.
With LEROY Automation, the CRA-Ready approach prepares your systems to meet regulatory requirements while maintaining operational continuity: audits, secure hardening, documentation, and training—for a safer, more resilient, and controlled railway line.