Completed
Requested by Congress in Section 549 of the Federal Aviation Administration Reauthorization Act of 2018, this study will examine the Federal Aviation Administration's (FAA's) cybersecurity workforce challenges, review FAA's current strategy for meeting those challenges, and recommend ways to strengthen the FAA's cybersecurity workforce, including consideration of its size, quality, and diversity. The study will consider cybersecurity workforce needs across the FAA’s mission areas and consider how these needs are likely to evolve over time. The committee's evidence base, analysis, findings, conclusions, and recommendations will be set forth in its final report.
Featured publication
Consensus
·2021
The Federal Aviation Administration (FAA) has overseen significant upgrades to the technology used to manage aviation operations to increase the safety and efficiency of the National Airspace System (NAS). Though necessary to regular operations, these modern computing and communications systems prov...
View details
Description
Pursuant to Section 549 of the FAA Reauthorization Act of 2018, a National Academies consensus study committee will (1) examine the Federal Aviation Administration's (FAA's) cybersecurity workforce challenges, (2) review FAA's current strategy for meeting those challenges, and (3) provide recommendations related to strengthening FAA's cybersecurity workforce, including consideration of its size, quality, and diversity. The study will consider cybersecurity workforce challenges agency-wide, including in such major functional areas as National Airspace System management, enterprise computing and communications infrastructure, air traffic control system acquisition and modernization, unmanned aircraft systems, and safety regulation. The study will take into account how the FAA's cybersecurity workforce needs are likely to change over time.
Areas to be explored include the following:
- The current and future cybersecurity landscape for the FAA and its mission areas;
- Management and human resources approaches and strategies to achieve current and future desired outcomes that meet cybersecurity workforce needs, including recruitment and flexibilities, selection, retention, training, education, certification, and compensation considerations;
- Cybersecurity organization structure, workforce strategies, and best practices of other government and private sector organizations with relevant missions, including air traffic management and aviation safety assurance;
- Statutory, regulatory, and other institutional constraints on recruitment and flexibilities, hiring, retention, and compensation of cybersecurity workers;
- Strategies to strengthen the cybersecurity workforce by attracting and retaining candidates from diverse backgrounds, including age, race, gender, and geography;
- FAA organizational structure, culture, and norms that affect the cybersecurity workforce;
- The U.S. labor market in cybersecurity expertise and commercial competition for qualified candidates; and
- The existing structure used by the FAA to define the diverse set of workforce cyber knowledge, skills, and abilities, and its alignment with frameworks such as the National Initiative for Cybersecurity Education.
The committee's evidence base, analysis, findings, conclusions, and recommendations will be set forth in a final report.
Collaborators
Committee
Co-Chair
Co-Chair
Member
Member
Member
Member
Member
Member
Member
Member
Member
Member
Sponsors
Department of Transportation
Staff
Brendan Roach
Jon Eisenberg
Daniel Talmage
Monica Starnes
Major units and sub-units
Transportation Research Board
Lead
Division on Engineering and Physical Sciences
Lead
Division of Behavioral and Social Sciences and Education
Lead
Computer Science and Telecommunications Board
Lead
Consensus and Advisory Studies Division
Lead
Board on Human-Systems Integration
Lead