Sofema Aviation Services (SAS) is excited to share the latest updated training by Sofema Aviation (SA):
Cybersecurity for Aviation Operations – Part IS Implementation
What is the training about?
This course provides comprehensive guidance on risk management, compliance strategies, cyber incident response, structured risk mitigation, and ISMS development. Practical workshops and case studies will help participants integrate cybersecurity ensuring regulatory compliance and operational resilience. This program will equip participants with the tools to assess and mitigate cyber risks in aviation systems, integrate cybersecurity into organisational safety management systems, and respond effectively to cyber incidents. Read more
Course type: Presentation without voice-over
Duration: Equivalent to 3-day classroom training
Price: 182.00 EUR
Which topics will be addressed?
1. Reference Listing of Relevant Documentation EASA Aviation Cyber Security
2. Role of ISMS in Aviation Safety
3. Stakeholder Responsibilities: Management, Compliance, IT, Operations
4. ISMS Requirements under IS.I.OR.200
5. Developing an EASA-Compliant Information Security Management System (ISMS)
6. Integration of ISMS with existing Safety Management Systems (SMS)
7. Identifying ISMS Compliance Gaps within Organisational Business Areas
8. Assessing Vulnerabilities in the Supply Chain and IT Infrastructure
9. Risk assessment methodology (aligned with IS.I.OR.205)
10. Cyber Risk Treatment & Mitigation Strategies – Developing Structured Mitigation Plans (aligned with IS.I.OR.210)
11. Contracting Considerations for Cyber Risk Management (IS.I.OR.235)
12. Conducting a Cybersecurity Risk Assessment
13. Cybersecurity Incident Detection, Response – Cyber Incident Response Plan (CIRP)
14. Cybersecurity Incident Classification and Response Levels
15. Internal vs. External Incident Reporting Requirements (IS.I.OR.230)
16. Case Studies: Aviation Cybersecurity Breaches – Examining Past Cyber Incidents In Aviation
17. How Organisations Can Improve Cyber Resilience See the detailed content
What are the learning objectives of this course?
Upon completion of this course, delegates will be able to:
• Interpret and apply EASA cybersecurity regulations (EU 2023/203, 2022/1645) within their organisation
• Conduct comprehensive cyber risk assessments following the IS.I.OR.205 methodology
• Develop, implement, and maintain ISMS documentation, including the Information Security Management Manual (ISMM)
• Establish effective internal and external cybersecurity reporting and communication mechanisms
• Integrate cybersecurity processes seamlessly into the organisation’s Safety Management System (SMS)
• Identify and mitigate third-party and supply chain security risks
• Enhance overall cyber resilience through structured incident response and continuous improvement practices
• Align cybersecurity management with international standards such as ISO 27001 and the NIST Cybersecurity Framework
• Demonstrate audit and inspection readiness through a strong understanding of compliance requirements
How to register?
Visit the course’s page here and enrol directly on the website or email [email protected] for group enrollments.
Tags:
Risk Management, Training, Sofema Online, Aviation Operations, Information Security Management System (ISMS), Cybersecurity, ISMS development, IT, Part-IS, EASA Aviation Cyber Security, Cyber Incident Response Plan (CIRP), vulnerabilities, organisations
