The digital transformation of governments, critical infrastructure, and public services has created unprecedented opportunities for development, but also exposed societies to a rapidly evolving landscape of cyber threats. Ransomware attacks, data breaches, and infrastructure disruptions now rank among the most destabilising risks facing both the public and private sectors. In 2024 alone, the average cost of a data breach reached USD 4.88 million, while a single software failure caused the cancellation of over 7,000 flights and hundreds of millions of dollars in losses across the aviation sector. Meanwhile, a global shortage of over 3.4 million cybersecurity professionals continues to widen the gap between risk and readiness.
Critically, 70% of all breaches involve a human element. Technology alone cannot secure an organisation, sound governance, leadership awareness, and a culture of cyber hygiene are just as essential as firewalls and encryption. From airports and seaports to ministries and municipal governments, the organisations most vital to sustainable development are often among the most exposed.
Transport infrastructure is particularly vulnerable. Airports combine passenger-facing IT systems with operational technology (OT) governing runways, baggage handling, and air traffic coordination, environments where a successful cyberattack can ground flights, disrupt cargo, and compromise passenger safety. Ports face structurally similar challenges: a single cyber incident at a major terminal can halt cargo handling, block vessel movements, and cascade across international supply chains. Both sectors share critical vulnerabilities, including ageing OT systems not originally designed with cybersecurity in mind, complex ecosystems of third-party operators, and leadership teams that are often better versed in operational logistics than cyber risk governance.
UNITAR integrates cybersecurity capacity-building across its training and research portfolio, working with governments, institutions, and sector leaders to strengthen digital resilience at every level. By combining executive education, practical frameworks, and cross-sectoral partnerships, our programmes help decision-makers translate awareness into action, and action into lasting institutional change.
Our Approach
UNITAR's cybersecurity programming is applied across three interlinked levels:
- Individual Level: Equipping leaders and practitioners with the knowledge, frameworks, and decision-making tools to manage cyber risk effectively, without requiring deep technical expertise. Training is designed to bridge the gap between awareness and confident, informed action.
- Institutional Level: Strengthening organisational governance, policy, and culture. Our programmes guide institutions in developing cybersecurity roadmaps, incident response plans, and internal structures that align with international standards and regulatory requirements.
- System Level: Fostering cross-sectoral and cross-border collaboration to address shared vulnerabilities. Through strategic partnerships and peer networks, UNITAR supports the development of resilient digital ecosystems at regional and global scales.
Initiatives
Executive Cybersecurity Training Programme
The Executive Cybersecurity Training Programme, developed with Georgia Tech’s Enterprise Innovation Institute, equips senior leaders with the strategic tools to govern cyber resilience without requiring technical expertise. Focused on high-risk sectors such as aviation, transport, ports, energy, and public administration, it places particular emphasis on complex environments like airports and ports. The programme covers core cyber risk concepts, the development of structured security frameworks such as NIST CSF and Zero Trust, and the strengthening of long-term organisational resilience, and is delivered in flexible formats with a joint Georgia Tech and UNITAR certification upon completion.