The TSA has released a new directive asking airport operators to strengthen their cybersecurity defense.
- According to the new directive, airport and aircraft operators are required to:
- develop a plan for improving their resilience and preventing infrastructure disruption and degradation,
- assess the effectiveness of their measures,
- develop network segmentation controls and policies,
- create access control mechanisms to prevent unauthorized access to critical systems,
- implement incident detection and response policies and procedures,
- and ensure that their systems are not left unpatched.
- The new measures expand on previous steps that helped mitigate and report cybersecurity attacks in the airline industry.
- Some of the measures that are already implemented in the industry are:
- reporting cybersecurity breaches to CISA,
- having a detailed cybersecurity assessment,
- having a direct point of contact, etc.
- In October 2022, a series of DDoS attacks managed to shut down the websites of 14 different airports in the U.S.
- A few months ago, the TSA issued a directive that instructed the U.S. railroad industry to follow a series of steps to mitigate cybersecurity risks.
- Only a few days ago, the White House released its National Cybersecurity Strategy.
