Addressing Airport Security’s Inside Threats

airport_enews Airline and airport workers (and vendors) require access to sensitive and restricted areas during the normal course of their required duties. Management needs to ensure that only authorized personnel have access to restricted areas – this is just as high a priority as passenger security checkpoints. However, many airports currently have siloed systems and processes used to manage employee credentials for facility access. Physical identity and access management operations are often handled manually. This results in higher costs of operations and potential danger because of errors, enrollment and termination delays, and a lower level of overall security.

Physical identity and access management (PIAM) software can solve airport identity challenges by unifying identity management airport-wide, integrating physical security systems, automating processes and simplifying control of employees, vendors and other identities. Software allows airports to manage the lifecycle of identities as they relate to physical access, including synchronized on/off-boarding across all systems harboring an identity record, access profile and zone management, and role-based physical access.

Automated and centralized management of identities and access at airports ensures compliance. Airport security policies and TSA (Transportation Security Administration) and FAA (Federal Aviation Administration) regulations require airports to vet and manage the lifecycle of their credentialed workers. Airports must consistently and efficiently perform all required steps and procedures while balancing this requirement against a timely and customer-friendly process.

Managing Identity Airport-wide

Identity management includes the fabric of systems, policies and procedures that govern and streamline the lifecycle of an identity and its relationship to an enterprise or entity. This concept can easily be applied to employers and their employees who are issued credentials to access and work in the various zones of an airport. Many departments have touch-points to these employees and their identities in which various systems and repositories are used.

Unified software systems enable operators to work in a single web-based interface that centralizes all identity information across relevant systems into a single view. The software interfaces seamlessly as needed with various systems throughout the airport. If there are prerequisites for an access control credential, software can track and ensure those requirements (authorization, I-9s, security checks, training, etc.). Also contributing to efficiency, use of special document-specific scanners for passports, driver’s licenses, etc. can store and manage PDF documents and monitor for expiration dates as part of an employer or identity record.

Software systems can also streamline time-consuming and inefficient processes such as issuing ID badges, managing various databases, adding new employees, responding to terminations or changing work assignments, and assigning access privileges across multiple physical access control systems.

Boosting Overall Operations

There are also multiple ways a software solution for airport identity management can boost overall operational efficiency and lower cost while achieving an acceptable security level and meeting regulatory requirements.

Software can leverage an existing Livescan solution and automatically submit applicants' information for automation of security threat assessment (STA) results and notification of criminal history records checks (CHRC) ready for review. Software can monitor airport workers' STA status in real-time and tie a worker's STA status to activation of an electronic airport badge.

Software systems also enable operators to set prices for employer interactions for direct billing or regular invoicing of charges such as badging, background checks, penalties, violations, lost assets (keys, cards, etc.), training, etc. Automation can recoup transactions that would not be cost-effective to recoup using manual methods.

Related to compliance monitoring, software can generate reports on an as-needed basis (nightly, weekly, monthly and on-demand) in the format required by the Transportation Security Clearinghouse and other channel service providers while providing real-time audit capabilities, eliminating the need for manual audits.

Meeting the Challenges

Various airline employees, vendors and multiple tenants need to be authenticated every day, and their physical access rights need to be controlled and managed dynamically based upon their role and policies affecting their access. In fact, airports present one of the most complicated scenarios in which to administer restricted-area access control, identity verification and issuance of access credentials. A multi-layer balance between security, costs and practicality can address these issues. Off-the-shelf PIAM software systems can solve these challenges and also create new operational efficiencies throughout the airport.

ON DEMAND: In this webinar, Regina Lester, Vice President of Security & Safety Operations at Toledo Zoo, will share her insights on implementing security technologies in the entertainment sector and the challenges all organizations face — large and small — when it comes to balancing budget and security.