As I reported in July, we are now fully qualified assessors (auditors) for the Civil Aviation Authority’s Assure programme. Our success in achieving this valuable qualification was much assisted by Richard Moody’s leadership in ServiceTec’s achievement of ISO 27001. This ranking has led to some very positive conversations with airports, although the CAA has not been pressing the airports really hard on this – European airports have been working hard to get truly “post-Covid”, which is still a rather “patchy state”. We are still working to finish the CAF evidence documentation for our major airport customer.
John McCarthy has continued to represent ServiceTec within the cyber-security activity of ACI Europe – most recently at their conference in Budapest. In addition to giving a presentation on the cyber effects of Russia’s aggression against Ukraine, John talked about how airports should prepare for recovery after a serious cyber attack.
The CAA and industry are increasing their work on OT (Operational Technology) security and John has prepared a training course on what is required. OT cyber security has been a slow starter, but as more and more OT devices are connected to the Internet, awareness of the need for proper cybersecurity practices and connections has grown.
Finally we are working with the airport police forces to develop procedures and awareness of the interaction of their work and cyber security.
