Sofema Aviation Services (SAS) Considers the Elements to be considered related to Information & Cyber Security Auditing within an EASA Part 145 Organisation As cybersecurity becomes a regulatory focus, EASA Part 145 audits will incorporate cyber resilience checks within maintenance organizations. National Aviation Authorities (NAAs) and internal compliance managers will be responsible for assessing the security of maintenance data, IT systems,…

Sofema Aviation Services (SAS) examines financial impacts of contractual clauses in aviation agreements. Introduction The financial consequences of contractual clauses within aviation agreements, such as Standard Ground Handling Agreements (SGHAs) and Maintenance Contracts, are significant and can directly impact operational costs and financial stability. Ambiguities in key terms, particularly in liability, indemnification, and service scope…

Sofema Aviation Services (SAS) www.sassofia.com is pleased to share that a new course has been added to our training portfolio: Part 145 Cyber Security Implementation – 2 Days Available as a Classroom or Webinar training* – Register at team@sassofia.com *New – Participants can now enrol Free of Charge (FOC) in a complementary 1-day Sofema Online (SOL) training to enhance their learning experience. What…

Sofema Aviation Services (SAS) considers a number of core documents used in support of EASA compliant cyber security initiatives. AMC 20-42 Airworthiness Information Security Risk Assessment Date: June 2023Description: Guidance for assessing airworthiness information security risks, including threats and mitigations. COMMISSION DELEGATED REGULATION (EU) 2022/1645 Date: July 2022Description: Rules for managing aviation information security risks impacting safety. COMMISSION IMPLEMENTING REGULATION (EU) 2023/203 Date: October 2022Description:…