In today’s digital landscape, the aviation industry faces increasingly sophisticated cyber threats that can compromise the safety and security of critical systems. To combat these challenges, the Transportation Security Administration (TSA) has implemented new cybersecurity requirements. In this blog post, we’ll explore how Teneo, in collaboration with Akamai Guardicore, can help aviation organizations meet these requirements and strengthen their cybersecurity defenses.
- Develop network segmentation policies and controls
One of the crucial aspects of the TSA cybersecurity requirements is implementing robust network segmentation policies. Teneo, in conjunction with Akamai Guardicore, offers a solution that goes beyond traditional network-based firewalls. Guardicore leverages software-defined Layer-7 firewall technology to provide granular segmentation, sometimes referred to as micro-segmentation. This means that specific processes or programs can only communicate with authorized counterparts, ensuring that operational technology (OT) systems remain secure even if an information technology (IT) system is compromised, and vice versa. Guardicore’s innovative approach enhances network security, regardless of whether systems are located in a data center, the cloud, on an airplane, or in a tower.
- Create access control measures to secure critical cyber systems
Access control is a vital component of cybersecurity. Guardicore, with its user-friendly graphical user interface (GUI), simplifies the process of determining application dependencies and isolating applications from unauthorized access. Implementing Guardicore’s solution requires no downtime, VLAN changes, IP address modifications, or new zone-based firewalls. The installation process is swift and straightforward, providing enhanced access control measures for critical cyber systems.
- Implement continuous monitoring and detection policies
Continuous monitoring and detection are crucial for defending against cyber threats. Guardicore excels in this area by redirecting malicious actors attempting unauthorized access to a honeypot server. This not only prevents the intrusion but also provides valuable insights into their methods and intentions. Guardicore’s continuous monitoring capability allows security teams to respond effectively and mitigate potential cyber threats. Additionally, Guardicore leverages OSQUERY, enabling security teams to swiftly scan all systems for specific processes or attributes that indicate compromise, enabling proactive threat prevention.
- Reduce the risk of exploitation of unpatched systems
Patching and updating systems in a timely manner is vital for reducing vulnerabilities. Guardicore provides an additional layer of protection by restricting connections to only approved services on a server. This means that even if a server has unpatched components, the restricted access prevents exploitation of those vulnerabilities. This allows administrators time to patch the vulnerable components without fear of immediate compromise.
Enhancing Security with Akamai Enterprise Application Access (EAA)
While Guardicore is highly effective from a network perspective, a further step can be taken to prevent users from directly communicating with servers. Akamai’s Enterprise Application Access (EAA) achieves this by redirecting users to Akamai’s global points-of-presence (POP). These POPs serve as proxies, establishing secure connections with application servers. By continuously monitoring and authenticating connections and users, EAA thwarts hackers’ attempts to exploit system, operating system, or application vulnerabilities. Moreover, multi-factor authentication (MFA) further strengthens the security posture.
The aviation industry faces significant cybersecurity challenges, especially with the introduction of new TSA requirements. Teneo, in collaboration with Akamai Guardicore, provides a comprehensive solution to address these challenges. By implementing robust network segmentation, access control measures, continuous monitoring and detection policies, and reducing the risk of exploitation, the aviation industry can enhance its cybersecurity defenses. Furthermore, Akamai’s EAA ensures an additional layer of protection by redirecting users to proxies rather than allowing direct communication with servers. Through these innovative solutions, Teneo and Akamai Guardicore empower the aviation industry to safeguard critical systems and ensure the safety of operations in an increasingly digital world.
Schedule a free consultation to discuss how Teneo can support your cybersecurity needs and navigate the evolving TSA requirements.
Author: Steve Evans, SVP Technical Customer Success, Teneo
