Transparency, Ethics and Integrity
Transparency, Ethics and Integrity
Expanded Cybersecurity Exercises In 2024, we expanded the scope of our cybersecurity tabletop exercises to include the Executive team, emphasizing the importance of leadership involvement in cybersecurity. We also integrated business continuity planning into these exercises, ensuring that our organization is prepared to maintain operations in the face of cyber incidents.
Additionally, we conducted several disaster recovery tests with a focus on ransomware resiliency, ensuring that our systems and data could be quickly restored in the event of an attack.
Penetration Testing and Disaster Recovery To further strengthen our defenses, we increased the number of penetration tests performed. These tests simulated the tactics, techniques and procedures used by threat actors targeting the aviation industry, allowing us to evaluate and enhance our detection and response processes.
To further enhance our cybersecurity measures, we partnered with our cybersecurity insurer to conduct breach attack simulations on our networks. These simulations not only helped us identify and address potential vulnerabilities and significantly reduced insurance costs.
Enhanced Vulnerability Management We also expanded our vulnerability management processes to include the Cybersecurity and Infrastructure Security Agency’ s known exploitable vulnerabilities database. This addition has further reduced our security exposure by allowing us to proactively address vulnerabilities that are actively being exploited in the wild.
In 2024, the Airports Authority reaffirmed its commitment to ethical conduct and transparency across all levels of the organization. Every employee and member of the board of directors is required to follow the Code of Ethics for Employees or the Code of Ethics for Members of the Board of Directors, which outline clear standards for fair, impartial and responsible behavior in daily operations. These standards help uphold the Authority’ s core value of integrity.
Key highlights from 2024 include:
• Compliance with Financial Disclosures: All board members and designated employees submitted required annual financial disclosures. Contracting officers and contracting officer’ s technical representatives submitted conflict-free certifications, supporting ethical procurement practices.
• Ethics Communications: Ongoing internal communications provided timely guidance on workplace ethics, including reminders for training deadlines and ethical decision-making resources.
• Board Orientation: All new board members received detailed briefings on ethics policies and expectations, reinforcing a shared commitment to responsible governance.
• Employee Training: Ethics training was provided to all new hires, and 100 percent of employees completed annual ethics training in 2024.
• Conflict of Interest Oversight: Conflict of Interest reports were prepared for board members in advance of board and committee meetings, promoting transparency in decision-making.
• Ethics Integrity Record: No substantiated allegations or formal investigations were reported in 2024, reflecting the strength of our ethics program and the commitment of employees and leadership to maintaining high standards.
REGULATORY COMPLIANCE | 2024 IMPACT REPORT 35
METROPOLITAN WASHINGTON AIRPORTS AUTHORITY