The Transportation Security Administration (TSA) recently issued new cybersecurity requirements for the aviation industry, which follows last year’s announcement for railroad operators. Both announcements are part of the Department of Homeland Security’s effort to improve the nation’s cybersecurity resiliency and align with the National Cybersecurity Strategy released by the White House earlier this month. While the strategy is not perfect, it draws attention to the importance of zero trust within our nation’s critical infrastructure. Just like any other critical infrastructure sector, the aviation industry is a prime target for cyberattacks due to the critical nature of its operations and the potential for significant financial and reputational damage. Within the TSA emergency amendment are four actions that TSA-regulated aviation entities must take to mitigate cybersecurity threats:
- Network segmentation
- Creation of access control measures
- Implementation of continuous monitoring and detection, and
- Reduction of risk of exploited unpatched systems
By constantly verifying and monitoring user and device activity, aviation organizations can achieve a higher level of security and better manage their cyber risk.