ITS Cybersecurity
Training Program

Instructor-led cybersecurity training designed to help transportation professionals secure modern ITS infrastructure using the NIST Cybersecurity Framework and ITS-specific control sets.

About The Training

TrustThink developed this instructor-led ITS cybersecurity training program to help transportation professionals understand, assess, and secure Intelligent Transportation Systems (ITS) operational technologies. Developed in alignment with National Highway Institute (NHI) training requirements, the course incorporates the NIST Cybersecurity Framework (CSF), ITS Profile, ARC-IT, and MITRE ATT&CK methodologies to provide practical, real-world cybersecurity guidance for transportation environments. The modular course structure combines lectures, hands-on exercises, collaborative analysis, and scenario-driven activities designed to support adult learning and operational decision-making

Course Topics

This training provides participants with practical cybersecurity knowledge tailored to ITS and operational technology environments. Through real-world scenarios and hands-on activities, attendees will learn how to assess, secure, and respond to cybersecurity challenges impacting modern transportation infrastructure. This includes:

  • Explore cybersecurity foundations including the NIST CSF, risk analysis, threat modeling, and security governance.
  • Learn ITS-specific frameworks and architectures such as the ITS Profile, ARC-IT, mission objectives, and security profiles.
  • Examine cybersecurity considerations for transportation technologies including Advanced Traffic Signal Controllers (ATCs), Dynamic Message Signs (DMS), Closed-Circuit Television systems, and Roadside Units (RSUs).
  • Understand threat detection and response concepts using MITRE ATT&CK, incident response planning, and vulnerability analysis. 
  • Participate in practical exercises focused on gap analysis, mitigation strategies, control implementation, and real-world ITS security scenarios. 

This course is built around a realistic cybersecurity scenario designed to simulate challenges faced by modern transportation agencies. Participants will take on the role of supporting a local Department of Transportation (DoT) responsible for managing a city’s ITS infrastructure, including ATC, DMS, RSU, and CCTV systems.

  • Applying Cybersecurity Frameworks to ITS

  • Identifying and Mitigating ITS Cyber Threats

  • Performing Gap Analysis and Security Planning

Applying Cybersecurity Frameworks to ITS

  • Participants will learn how to apply the NIST Cybersecurity Framework (CSF) and ITS Cybersecurity Framework Profile to real-world transportation systems. The course covers CSF functions, categories, profiles, and risk-based decision-making approaches tailored to ITS operational technologies.

Identifying and Mitigating ITS Cyber Threats

  • Attendees will analyze cybersecurity threats impacting transportation operational technologies, including traffic signal controllers, DMS infrastructure, CCTV systems, and RSUs. Using frameworks such as MITRE ATT&CK and ARC-IT, participants will identify vulnerabilities and develop mitigation strategies aligned with operational mission objectives. 

Performing Gap Analysis and Security Planning

  • Participants will perform structured cybersecurity gap analyses to assess current and future ITS security postures. Through practical exercises and collaborative activities, attendees will develop actionable mitigation plans and security architectures designed to improve resilience across transportation systems.

What Our Participants Are Saying

The content was very well delivered and with the focus on ITS specific frameworks and controls, this training lends itself to be shared throughout organizations for all levels of users to understand “why” risks are evaluated and discussed, along with controls and configurations that are then implemented.

FDOT

The material brought together my many years of formal education and years of experience so I can apply all the knowledge in a formalize and structure method to implement the CSF more effectively.

NJDOT

I am glad the course discussed the NIST SP 800-53 and the purpose.

NJDOT

Interested in Joining an Upcoming Session?

Name(Required)