The challenges and threats in the field of digital information security are constantly evolving and becoming ever more complex. In a world characterised by global, pervasive and increasingly sophisticated threats, data protection has become a central theme, requiring a constant process of governance and monitoring in order to keep risk at acceptable levels.
In response to these demands, SACBO has adopted a cybersecurity management strategywith an integrated multi-level approach that covers operational, managerial and strategic areas, with the aim of guaranteeing operational continuity and the security of sensitive data and information, focusing on the selection of technology and its protection, as well as on the profiles of its various stakeholders. Every aspect is therefore to be considered fundamental for the prevention and management of risk.
The implementation of these strategies has led Milan Bergamo Airport to set up the “Company Steering Committee on Cybersecurity”, a specialised organisation charged with ensuring the suitability, appropriateness and efficiency of activities of guidance, strategic coordination and control of cybersecurity goals. At the end of 2022, a multidisciplinary Advisory Team was also set up, bringing together legal and technological skills to favour the efficient management of information security.
The strategy also includes the analysis of anomalies, with the goal of drawing up efficient plans to respond to any cybersecurity incidents and limit their impact.
The activity of monitoring security performance is a continuous process, based on the definition of the KPI related to the goals identified and the controls introduced.
Of no less importance is the promotion of “cybersecurity awareness”, through training,aimed at guiding and educating airport employees on cyber risks, promoting related training and awareness-raising initiatives.
Under the guidance of SACBO, Milan Bergamo Airport is facing the theme of cybersecurity with awareness, with the aim of protecting information, guaranteeing operational continuity and promoting a culture of cybersecurity.