FAA and Its Partner Agencies Have Begun Work on the Aviation Cyber Initiative and Are Implementing Priorities [open pdf - 779KB]
From the Highlights: "FAA [Federal Aviation Administration] oversees the safety of civil aviation through a complex network of information systems at air traffic control facilities. Cyber-based threats are rapidly evolving and may put air traffic control systems at risk for compromise. The FAA Extension, Safety, and Security Act of 2016 directs FAA to develop a comprehensive, strategic framework to reduce cybersecurity risks to civil aviation. Part of FAA's efforts to implement this framework involves coordination and collaboration on aviation cybersecurity with the Departments of Homeland Security (DHS) and Defense (DOD) through the Aviation Cyber Initiative (ACI). The former Chairman of the House Committee on Transportation and Infrastructure requested that we examine FAA's roles, responsibilities, and actions as an ACI member. Specifically, we assessed ACI's progress in achieving its mission."
Department of Transportation, Office of Inspector General, Report No. AV2020043
Department of Transportation Office of Inspector General: https://www.oig.dot.gov/