How can airports manage cybersecurity on a constrained IT budget? | SITA

Like this post?
get more like it as soon as they are published
Back to blog

How can airports manage cybersecurity on a constrained IT budget?

Published on  09 August by Stephane Gomez , CyberSecurity Lead - Consulting and SOC Practice, SITA
1 comment(s)

Cybersecurity has shot to the top of the airport CIO’s investment priorities, with the vast majority of airports (96%) planning to invest in cybersecurity projects in the next three years1.

That shouldn’t surprise any of us, as forecasts from IT analysts are unable to keep pace with the dramatic rise in cybercrime. What’s certain is that the unstoppable march of digital transformation projects across all industries, including aviation, will only serve to heighten our vulnerabilities to cybercrime. The air transport industry’s insatiable hunger for more data and better business intelligence is driving an explosion of cloud computing initiatives and Internet-of-Things (IoT) devices. This further accelerates the need to better secure our fast-evolving airport IT infrastructure.

A security paradox: Exploding threats, limited budgets

Cyberthreat increase graphRecent research shows that cyber threats are at an all-time high. Symantec reports increases across the board: 46% increase in new ransomware variants, 600% increase in attacks against IoT devices, 54% increase in mobile malware variants, 80% increase in new malware on Macs2.

Yet despite the explosion of threats, security executives, especially at smaller organizations such as airports, are struggling to keep up with the rising costs, skills and resources needed to stay on top of this growing risk to their data, and maybe more importantly, to their company reputation. So far spending on IT to protect from the increasing risks has not grown in the same way. EY reports that 87% of enterprises say they require up to 50% more budget for effective cybersecurity3.

Building a SOC on a tight budget: The shared service model

A CyberSecurity Aviation SOC is often the first component security executives look at when building up their cyber capabilities. This centralized unit takes charge of security monitoring for the airport’s entire information systems and the management of detected cybersecurity incidents. It addresses many of the key challenges of the airport’s IT organization in starting up a cybersecurity capability, in particular, the shortage of skills and people.

SOC People, Process, Tools diagram

Building a dedicated SOC can be costly and time-consuming. It demands ongoing attention to be effective, and for many smaller airports, this is often seen as a stumbling block.

An alternative approach is to share SOC services across multiple airports within an airport group or commercially linked airports. A shared model spreads benefits and costs across multiple airports, enabling the sharing of information, best practices and a common governance of cybersecurity. That includes detection technology and tools, security knowledge and people, all of which are common across every participating airport’s IT department. It also enables a group of airports to act as a single community to engage with the government on issues related to security. For many airports across the world, this is a clear way forward in the quest to tackle cyber threats, bringing with it substantial cost savings over a dedicated SOC.

A vital final point: Make sure it’s tailored to air transport

Airports, independent of their size or location, share similar business objectives and are driven by comparable business models and processes. Cybersecurity must be tailored to those business objectives, as it demands specific in-depth knowledge of those unique airport processes and priorities. This leads to a growing call for the development of "verticalized" solutions to address the industry's unique threat profile. SITA CyberSecurity launched a comprehensive suite of expert security services focusing on the specific needs of the airport.

Need more information? 

Contact SITA

1 Air Transport IT Trends Insights  2017

2 Symantec Internet Security Threat Report

3 EY Global Information Security Survey 2017-18

Leave your Comment


Type the code from the image


  • Published on10 August 2018 03:08 AM by Patrick Garez
    We wish to invite you to visit our SOC in Hong Kong ideally or in Singapore where you may find user friendly and cost effective solutions to Cyber Protection for some of your clients
Back to the top
Connect with us