The aviation industry has traditionally focused on physical security threats, but recent revelations about risks on Boeing‘s supply chain have spotlighted the critical need to measure and mitigate supply chain risk, according to SecurityScorecard.
The report comes as regulatory bodies worldwide ramp up cybersecurity requirements for the aviation sector. The US Transportation Security Administration introduced new mandates in March 2023, and the EU’s Implementing Regulation 2023/203 will take effect in 2026, setting a new standard for aviation information security risk management. As the aviation industry grapples with supply chain cyber threats, understanding these risks’ entire scope and impact is crucial for developing effective mitigation strategies.
The aviation industry scores a “B” on cybersecurity
The aviation industry scores a “B” on average. While this isn’t a failing grade, significant disparities exist. Organizations with a B rating are 2.9x more likely to be victims of data breaches than those with an A rating.
Notably, aviation-specific software and IT vendors score the lowest, with a mean score of 83, posing substantial third-party risks…
