fall within the national security perimeter and offer essential services to residents and the industrial
system. Their security is necessary to provide proper services to citizens. Their security also
protects them from potential catastrophic damage, such as tsunamis, volcanoes, and floods, thereby
tackling both "physical" integrity caused by natural occurrences and "cyber" integrity triggered by
cyber-attacks. Railway systems are increasingly vulnerable to cyber-attacks as they transition from
tailored stand-alone systems to open-platform, standardized hardware built with commercial off-
the-shelf components, as well as the growing use of networked control and automation systems
that can be accessed remotely via private and publicly available networks. The goal of this research
is to analyze and develop a method for modeling and analyzing threats in railway systems, as well
as their capacity to deal with cyber-attacks and recover from such attacks, with a focus on its
supporting infrastructure. The following are the research's contributions: First, it will apply the
STRIDE methodology for railway threat modeling. Second, it will introduce the railway cyber-
risk framework. Third, the proposed framework will improve cybersecurity maturity and enable
threat intelligence to ensure proactive cybersecurity in the railway.