Final Project Description Now Available: Securing Property Management Systems

After receiving industry feedback on its draft project description, the National Cybersecurity Center of Excellence (NCCoE) is excited to share the release of its finalized project description for the hospitality sector: Securing Property Management Systems.

The NCCoE aims to publish a practice guide that demonstrates how hospitality organizations can implement stronger security measures within and around the PMS, with a focus on the POS system through network segmentation, point-to-point encryption, data tokenization, multifactor authentication for remote and partner access, network and user behavior analytics, and business-only usage restrictions. 

Soon, the NCCoE will use the Federal Register to post a notice that calls for technology collaborators for this project. A separate announcement will be sent out when the project’s Federal Register notice is available. This project will produce a NIST Cybersecurity Practice Guide—a freely available description of the solution with practical steps needed to effectively secure the PMS and its many connections within a hospitality business’ IT system. 

Interested in joining our Community of Interest to guide this project as it moves forward? Send us an email at hospitality-nccoe@nist.gov.