Blog

EASA is Driving Information & Cyber Security Regulations – WHY?

read more
Cyber-Security-Regulations – WHY?

March 05, 2025

Steven Bentley

Sofema Aviation Services considers key aspects of Information & Cyber Security Management, since EASA is mandating Aviation Information and Cyber Security Regulations. Cyber threats pose a significant risk to aviation safety, operational continuity, and compliance with international standards.While organizations are responsible for managing their security risks, a regulatory framework ensures a harmonized, risk-based, and proactive…

Part 145 – Information Security Foundations – Cyber Threat Landscape

read more
A digital security interface featuring a glowing shield with a keyhole, symbolizing cybersecurity protection. A person’s hand is interacting with the interface, emphasizing digital security measures. The Sofema Aviation Services logo is in the top-left corner, with a text overlay discussing Part 145 information security foundations and the cyber threat landscape.

February 28, 2025

Steven Bentley

Sofema Aviation Services (SAS) considers the challenges related to phishing, ransomware, data breaches, and insider threat exposures (both intentional and accidental) within the context of EASA Part 145 organizations, together with a high-level mitigation review. Introduction The European Union Aviation Safety Agency (EASA) mandates comprehensive management of information security risks in aviation to safeguard operations,…

Overview of Regulation (EU) 2023/203 and Its Relevance to Part 145 Organizations

read more
A digital interface displaying cybersecurity-related graphics, including aircraft symbols and data analytics, with a Sofema Aviation Services logo in the top-left corner. The text overlay highlights a blog series on cybersecurity, focusing on Regulation (EU) 2023/203 and its impact on Part 145 organizations.

February 27, 2025

Steven Bentley

Sofema Aviation Services (SAS) considers key elements related to Cyber Security Compliance within an EASA Part 145 Organizations Regulation (EU) 2023/203 was introduced to establish a framework for managing information security risks within the aviation sector, particularly focusing on their potential impact on aviation safety. Note – EASA Part 145 Organizations have until 22 February…

Considering forthcoming Part 145 changes driven by Regulation (EU) 2023/203, specifically targeting information security management requirements

read more
A digital blue-toned interface featuring aircraft symbols, radar-style circles, and binary code, representing cybersecurity in aviation. The Sofema Aviation Services logo appears in the top-left corner, with text highlighting changes in Part 145 regulations focusing on information security management.

February 27, 2025

Steven Bentley

Sofema Aviation Services (SAS) www.sassofia.com considers the changes to be introduced to comply with Regulation (EU) 2023/203 affecting EASA Part 145 organizations and specifically targeting information security management requirements Introduction – Key changes include: Mandatory Information Security Management System (ISMS): Part 145 organizations must establish, implement, and maintain an ISMS to manage information security risks that…

Privacy Overview

This website uses cookies so that we can provide you with the best user experience possible. Cookie information is stored in your browser and performs functions such as recognising you when you return to our website and helping our team to understand which sections of the website you find most interesting and useful.