The SACAA Takes A Significant Step Towards Enhancing Cybersecurity

The SACAA Takes Significant Step Towards Enhancing Cybersecurity


 

The South African Civil Aviation Authority’s Aviation Security (AvSEC) Division has taken a significant step toward enhancing cybersecurity in South Africa’s civil aviation sector by convening key stakeholders for an important meeting.

The team led by Executive: AvSEC, Mr. Jason Tshabalala, met with representatives from the Department of Communications and Digital Technologies (DCDT) Cybersecurity Hub and the CSIR Cybersecurity Research Group where the objective was to initiate collaboration on establishing a sector-specific Computer Security Incident Response Team (CSIRT) for the aviation industry.

This initiative aligns with the ICAO Cybersecurity Strategy, which envisions a global civil aviation sector that is resilient to cyber-attacks, safe, secure and prepared for ongoing innovation and growth.

Among those present at the meeting was the DCDT’s Mr Tinyiko Ngobeni (Deputy Director-General of ICT Infrastructure Development and Support) and Dr. Kiru Pillay (Chief Director of Cybersecurity Operations). The CSIR was represented by Research Group Leaders Dr. Moses Dlamini and Dr. Zubeida Dawood.

The ICAO cybersecurity strategy is structured around seven key pillars, namely:

  1. International cooperation
  2. Governance
  3. Effective legislation and regulations
  4. Cybersecurity policy
  5. Information sharing
  6. Incident management and emergency planning
  7. Capacity building, training, and cybersecurity culture

The establishment of the sector’s CSIRT allows for the direct implementation of the pillars of information sharing, incident management and emergency planning, capacity building, training, and fostering a cybersecurity culture.

The ICAO Cybersecurity Action Plan (CyAP) outlines specific requirements under these pillars. For Pillar 5, which focuses on information sharing, it was established that there is a need to develop recognised platforms and mechanisms to facilitate information exchange in accordance with existing ICAO provisions. This will enable prevention, early detection and mitigation of relevant cybersecurity events.

The sixth Pillar, which addresses incident management and emergency planning, requires member states to establish adjustable plans that ensure the continuity of air transport during cyber incidents, utilise existing contingency plans, and incorporate provisions for cybersecurity along with exercises to test cyber resilience.

Under Pillar 7, the focus is on capability building, training, and cybersecurity culture, member states are required to ensure the qualification of personnel in both aviation and cybersecurity.

It also includes raising awareness of cybersecurity, incorporating proper curricula on aviation cybersecurity into national educational frameworks and promoting the development of a comprehensive body of knowledge in aviation safety and security throughout the organisation, including with senior management. Additionally, there is a need to encourage cybersecurity innovation and support relevant research and design while integrating cybersecurity into the ICAO Next Generation of Aviation Professionals strategy.

Both the DCDT Deputy Director-General and the SACAA Executive: AvSEC emphasised the importance of their collaboration, highlighting two key points:

  • ICAO Compliance: The initiative aligns with the International Civil Aviation Organization (ICAO) requirements, ensuring South Africa meets global standards for aviation cybersecurity.
  • National Policy Alignment: The project aligns with the National Cybersecurity Policy Framework, reflecting South Africa’s commitment to meeting and exceeding global standards for aviation cybersecurity, as well as aligning with the National Aviation Industry Cybersecurity Strategy.

The meeting concluded with several key actions to advance the initiative that include continued engagement between SACAA, DCDT’s Cybersecurity Hub, and the State Security Agency’s GovCSIRT.

The SACAA is proactively engaging with the aviation industry to assess the current cybersecurity landscape, demonstrating its commitment to staying ahead of potential threats. Ongoing monitoring of risks and adjustments to security measures, including legislative reviews, will further enhance this effort.

This collaborative initiative marks a significant milestone in South Africa’s journey toward a more secure and resilient aviation sector. By establishing a dedicated CSIRT, the industry will be better equipped to detect, respond to, and mitigate cybersecurity threats, ensuring the safety and integrity of South Africa’s aviation infrastructure.