Securing the Skies: Innovating Cybersecurity Governance for India's Emerging Small Airports

Authors

  • Shreyas Kumar Texas A&M University
  • Surya Pal Gangwar IIM Indore
  • Nakul Singh
  • Rishabh Pagaria Texas A&M University
  • Anika Garg Texas A&M University
  • Saptarishi Das Texas A&M University

DOI:

https://doi.org/10.34190/eccws.24.1.3664

Keywords:

Airport cybersecurity, Public sector innovation, Cyber risk governance, Digital aviation policy, RCS- UDAN

Abstract

Cybersecurity policy and governance are becoming increasingly critical as small airports in India undergo rapid
expansion in operational capacity and digital integration under government-led initiatives like the Regional
Connectivity Scheme RCS-UDAN. This paper investigates the cybersecurity readiness and governance challenges
small airports face, specifically within the transformative context of Uttar Pradesh's civil aviation sector. Uttar
Pradesh, India's most populous state, has witnessed significant infrastructure innovation and policy-driven growth
in aviation, exemplified by the ambitious Civil Aviation Promotion Policy of Uttar Pradesh 2017, which aimed at
enhancing regional connectivity and economic inclusivity. However, this rapid advancement and digitalization,
involving extensive integration with national and international air travel networks, has simultaneously introduced
substantial cybersecurity vulnerabilities. Utilizing a Public Sector Innovation (PSI) framework, this research
evaluates innovative policy approaches and governance mechanisms for managing and mitigating these
cybersecurity risks. The study highlights vulnerabilities from increased complexity, limited administrative and
technical capacities, and resource constraints typical of smaller airport operations. It argues for the urgent need to
develop tailored cybersecurity frameworks that effectively address local contexts while ensuring alignment with
broader national and international cybersecurity standards. Key recommendations include establishing clearly
defined governance structures for cybersecurity oversight, enhancing multi-stakeholder coordination across
different administrative levels, promoting extensive cybersecurity awareness and training programs, and
instituting robust and responsive incident management and recovery mechanisms. These policy innovations and
governance reforms are crucial not only for safeguarding critical aviation infrastructure but also for supporting
sustainable economic growth, resilience, and inclusive development within India's rapidly evolving civil aviation
landscape. This paper provides valuable insights for policymakers, regulators, airport operators, and technology
providers, offering a strategic roadmap toward comprehensive cybersecurity preparedness for India's small
airports.

Author Biographies

Shreyas Kumar, Texas A&M University

Shreyas Kumar is a Professor of Practice in Computer Science and Director of the AGGIES Lab at Texas A&M University. Drawing on more than 25 years of cybersecurity experience including leadership roles at Adobe, Oracle, and Uber. He advises the U.S. Space Force, mentors over 50 students, and serves as an Advisory CISO. A passionate lifelong learner, he continually advances security innovation.

Surya Pal Gangwar, IIM Indore

Surya Pal Gangwar, IAS, serves as Secretary to the Hon’ble Chief Minister of Uttar Pradesh. A PhD scholar in Strategic Management at IIM Indore, he holds a B.E. (Hons) in Industrial Engineering from IIT Roorkee. His diverse experience spans EMC, Philips, Oracle, Air India, and the Indian Revenue Service.

Nakul Singh

Nakul Singh, PMP-certified, is VP of Product at Righ Inc., with 24+ years in software engineering and product delivery. He’s led major initiatives in Broadband, IoT, AI SaaS, and Cybersecurity. Previously at Cisco and Motorola, he holds degrees from IIT Roorkee (2000) and IIM Bangalore (2015).

Rishabh Pagaria, Texas A&M University

Rishabh Pagaria is a Master’s (Thesis) candidate in Computer Science, Class of 2026, at Texas A&M University. He serves as the Vice President of Global Partnerships at Texas A&M Aggies Lab and brings over two years of experience as a Senior Data Engineer at Quantiphi. Rishabh has demonstrated leadership through his roles at AGGIES Invent and TAMUhack 2025. His current research focuses on developing AI agents for real-time detection of social engineering attack.

Anika Garg, Texas A&M University

Anika Garg is a 2026 M.S. Computer Science candidate and Vice President of Innovation at Texas A&M’s AGGIES Lab. She has published three peer-reviewed papers and is currently working on developing agentic systems for cybersecurity.

Saptarishi Das, Texas A&M University

Saptarishi Das is an undergraduate student at Texas A&M University, College Station, with a strong academic and professional focus on Cybersecurity Systems and Artificial Intelligence. His interests span both cutting-edge research and practical applications in software engineering. Currently, he is serving as a Summer Software Developer Intern at GAVII, a cybersecurity firm.

Downloads

Published

2025-06-25

Issue

Vol. 24 No. 1 (2025): Proceedings of the 24th European Conference on Cyber Warfare and Security

Section

Academic Papers

License

Copyright (c) 2025 European Conference on Cyber Warfare and Security

Creative Commons License

This work is licensed under a Creative Commons Attribution-NonCommercial-NoDerivatives 4.0 International License.