Update on the "Information Security Roadmap 2020-2021-2022"
The updated Information Security Roadmap 2020-2021-2022 was prepared with the support of the ICAO Council and took into consideration three external assessments that were conducted in order to ensure the Organization is effectively addressing its future Information Security needs.
Those assessments, together with EAO’s internal audit recommendations, have been mapped into a single and updated Information Security Roadmap 2020-2022, and work has begun in earnest to deliver the results, which entail moving ICAO’s Information Security posture from the current posture 1.5 to the target of 2.5 on the Capability Maturity Model Integration(CMMI) Maturity level. All the work is based on industry-standard ISO27001:13 and the NIST Cyber Security Framework. Due to the COVID-19 crisis, the Secretariat has revisited the roadmap to make the needed adjustments to its deliverables owing to numerous challenges arising from lockdown and supplier interaction being disrupted.