Research Projects

Establishing an Airport IT Security and Compliance Department or Team

This Guidebook would detail what it takes to stand up a full IT Security

and Compliance program at an airport.

Background (Describe the current situation or problem in the industry, and how your idea would address it.)

Airports are increasingly faced with the challenge of managing the availability, confidentiality and integrity of data. Risk management and compliance requirements are presenting new challenges for IT departments to comply, even though they may not have the IT controls in place to ensure compliance. Airport IT departments are faced with categorizing data for SSI, PII, HIPAA and PCI compliance. Managing access (confidentiality) and availability to files, folders, networks and systems (availability), understanding the types of data stored in these areas and ensuring that the data is not compromised (integrity) all play a part in the modern IT department's accountability to securing IT assets and data. This new area can take advantage of integrations, automation and collaboration with existing compliance efforts (risk management departments) in addressing the bigger picture of the airport's overall focus on safety and security.

Objective (What is the desired product or result that will help the airport industry?)

This Guidebook would detail what it takes to stand up a full IT Security
and Compliance program at an airport.

Annotations

Voting

9 votes
9 up votes
0 down votes
Idea No. 121