Cybersecurity & Information Security Services
Based on our extensive experience of supporting airport and other aviation IT services. Oaktree has developed a world-recognised expertise in this area – several robust services to assist the aviation industry in defending itself against the modern world of cyber and IT attacks, all helping your airport to comply with the increasing regulatory environment.
Information
Security
System
Support
Systems
Testing
How do we do it?
1. A strategic review of cybersecurity environment
Review and advise on information security policies, procedures, governance and standards. Oaktree provides an “outside eye” on these topics and their inter-relationships. This service is often valuable for identifying both overlaps and gaps in cybersecurity approaches and systems.
2. Advice on road maps, going forward
Oaktree have considerable experience in advising organisations on the necessary processes to improve their cybersecurity stance. One of the most useful tools is our “road map”, providing you with a way forward and key steps, identified and sequenced in priority.
3. Assistance with ISO 27001 & NIST 800 implementation
ISO 27001 and NIST 800 are now accepted as a norm for a secure cyber posture. Implementation is a quite lengthy and demanding sequence of activities. ServiceTec provides comprehensive tools and training materials to assist and guide you through these activities.
4. Review of GDPR implementation
GDPR is now an accepted standard, but it is quite easy to over complicate what has to be done with apparently necessary elaborations; our review process can simplify life.
Senior Staff Training
Introduction to and training in NIS directive (Europe) and/or NIST 800 (N. America) requirements.
These are courses for senior executives, including those at board-level, in the new regulations concerning the management and information security of airports’ networks. This training also includes Operational Technology.
Cybersecurity Workshops and Tabletop cybersecurity exercises
These are day-long sessions on the practical side of cybersecurity for senior executives. These are usually tailored to meet the requirements of individual airports and other aviation organisations. An example of this would be how to respond to a cyber attack.
Cybersecurity for Airport Managers
Oaktree provide in-depth training to familiarise airport managers at all levels with the principal issues arising in airports from the cyber threat environment, and the fundamental requirements for dealing with that environment.
For larger organisations, certain parts of the course are specialised to management groups, for example Operational Technology.
Airport Information Security Training
This training covers, but is not limited to, cyber hygiene, social engineering, phishing and watering hole attacks.
Since the vast majority of successful cyber attacks utilise either social engineering and/or a mistake or ignorance of a member of the attacked organisation, it is important to train (and retrain) your staff in cyber hygiene. This simple, but essential, precaution can greatly reduce the chances of a successful attack on your organisation. This training can be delivered on site, at one of Oaktree’s selected locations, or online.
Information Security Assessment & Testing for Airports
1. Airport Information Security Hygiene Monitoring
Testing groups of, and individual, staff members by social engineering emails & other message probes.
Oaktree originates and tests, with airport management agreement, social engineering emails and other types of internet messages to see what response employees show. This both serves as a way to identify further training requirements, as well as giving you some indication of the extent to which the airport has achieved cyber hygiene.
2. Audit of Airport Network Security
Penetration testing of the airport networks and vulnerability from the external internet
Although there are a variety of “technological” defences, e.g. firewalls and so-called “air gaps”, all of these have default settings and other vulnerabilities which are well known to attacking groups. However, closing all these possible vulnerabilities is an ongoing task in the constantly developing threat environment, as is keeping systems up-to-date. An independent test of the technological defences by an up-to-date expert, such as ServiceTec, provides a valuable check on these possibilities.
Website(s) evaluation and identification of vulnerabilities
Websites especially need expert testing because they are usually constructed using “bought in” software with vulnerabilities known to attacking groups. They are often hosted outside the airport’s own environment.
Identification of Flight Information Display (FIDS) vulnerabilities
Penetrated FIDS can be exploited by attackers to give various damaging and frightening messages, but are often not part of the security remit of an airport’s IT team. This is an area where Oaktree’s aviation experience is especially valuable.
Identification of CCTV vulnerabilities
CCTV systems are often not part of the security remit of an airport’s IT team. They can however be used improperly, for example, to hide a physical attack. This again is an area where Oaktree’s aviation experience is especially valuable.
3. Audit of Airport Operational Technology
vulnerabilities
Oaktreec’s long aviation support experience makes it especially competent for the assessment of possible security vulnerabilities of general SCADA (Supervisory Control & Data Acquisition) devices.
Historically, SCADA devices, although computer controlled, have not been connected to airports’ IT networks. Nowadays, with the Internet of Things, such devices are increasingly connected, but their systems have not been designed with security in mind; they are often built around old and possibly unsupported systems.
These systems are often not part of the security remit of an airport’s IT team. They are, therefore, frequently vulnerable. The list of such vulnerable areas includes, at least, the following:
- Fuel farms information security vulnerability assessments
- Parking information security vulnerability assessments
- Airfield information security vulnerability assessments
- Engineering information security vulnerability assessments
- Building & Estate Management Information Security vulnerability assessments
Your Airport’s Resilience against Cyber Attack
Both of these services assume the inevitability of a successful attack on your airport. For the almost completely networked world of aviation, such a break-in, effectively, exposes the entire aviation network. In view of these high stakes, Oaktree offers two kinds of support service.
1. Preparation
Review of your procedures in place for dealing with the eventual inevitable successful Cybersecurity attack.
Oaktree runs an independent review of the procedures that your airport has in place to minimise the effects of a successful attack. It addresses the following issues:
Will you know you have been successfully attacked?
Will you know how you have been successfully attacked?
Do you have procedures and tools in place to limit the scope of the human, reputational and financial damage within your airport?
Do you have procedures and tools in place to limit the scope of the damage in the general aviation network?
2. Recovery
Assistance with handling the consequences of the inevitable successful cybersecurity attack.
Successful attacks can cost lives, reputation and money. Each of these elements requires a different approach to the way it is reported officially, to your stakeholders and to the general public. Oaktree can assemble a team to advise you on dealing with each of these elements.
How our CyberSecurity solutions can help you
- Build a cybersecurity-focused culture
- Demonstrate control of airport systems
- Develop cybersecurity road maps
- Test the robustness of airports against cyber attacks
- Identify potential weaknesses in airports
- Mitigate the threat of attack
- Monitor and ensure cybersecurity compliance
- Ensure GDPR or NIST 800 compliance