EASA Compliant Organizational Cyber Security Responsibilities – 1 Day


This course is designed to provide participants with a comprehensive understanding of the fundamental concepts and principles of cyber security as it applies to the aviation industry. In today’s interconnected world, aviation systems are increasingly reliant on digital technologies, making them vulnerable to cyber threats. This course aims to equip learners with the knowledge and skills necessary to protect aviation operations and maintenance environments from cyber-attacks.

EASA understands its role to regulate and ensure that cyber risks are taken into account during aircraft design, development, and operation and then controlled in order to avoid adverse effects on citizens’ safety.

The possibility for malicious aviation cyber acts continues to threaten the integrity of the aviation system and the potential grows almost daily. A continuing challenge is a task of identifying potential cyber vulnerabilities across many different and often complex aviation systems, some integrated and some disparate.

Whilst the current threat of cyber-attacks linked to terrorism in the aviation industry is assessed as low, the potential for opportunistic malware type of cyber-attacks is ever-present.

EASA will require the following business domains to meet new Cyber Security Objectives :

-Production & Design organizations
-Air operators
-Maintenance organizations
-Continuing airworthiness management organizations (CAMOs)
-Training organizations
-Aero-medical centres
-Operators of flight simulation training devices (FSTDs)
-Air traffic management/air navigation services (ATM/ANS) providers
-U-space service providers and single common information service providers
-Aerodrome operators and apron management service providers)

Sofema Aviation Services and Sofema Online are pleased to provide Competent Authorities and Industry Stake Holders with a comprehensive understanding of the key steps to be taken to meet regulatory and organization obligations.

Who is the Course for?

Regulatory Authority Members, Accountable Managers, and Proposed Nominated Persons (NP) Across All Aviation Business Domains including Flight OPS, Maintenance Planning (CAMO) and Maintenance OPS (145), Crew Training and Ground Ops, Compliance Monitoring Managers (Quality Managers) and Auditors, Safety & Security Managers.

 What is the Benefit of this Training – What will I learn?

-Gain an Awareness Regarding the Current Industry Exposure to Cyber Security Threats
-Be able to Identify and Prioritize Cyber Risks within the Aviation System
-Using Cyber Risk Assessment Tools
-Performing a Cyber Risk Profile within your Business / Organisation
-Be able to Develop Appropriate Risk Mitigation Processes

 Detailed Content / Topics – The following Subjects will be addressed

Cyber Security Terms and Definitions
Cyber Security Introduction & Awareness
ICAO Cyber Security Regulatory Drivers
Considerations Related to the Requirements of IR (EU) 2023/203 27 October 2022 –
Information Security
Information Security Management System (ISMS) Requirements DR EU 2022_1645
Cyber Security – Aviation Systems Threat Considerations
Aviation Cyber Security Domain-Specific Consideration
Addressing Aviation Cyber Security Emergencies
Developing an EASA Compliant Cyber Security Audit Checklist
Developing Aviation Cyber Risk Mitigation Strategies
Using Aviation Cyber Security Assessment Tools to Identify Related Risk Challenges


Previous Experience and familiarity with the regulatory environments within your particular domain are essential to appreciate the requirements related to Cyber Security

Target groups

The course is aimed at aviation professionals, managers, and personnel responsible for cyber security within organizations that operate under the European Union Aviation Safety Agency (EASA) regulations. This course is designed to provide them with a comprehensive understanding of their roles and responsibilities in maintaining cyber security measures and compliance within the aviation industry.

Learning Objectives

To consider the Key elements required to ensure your organization takes all necessary steps to protect the organization, develop contingency plans and achieve regulatory compliance.

What do People Say About Sofema Aviation Services Training?

“The instructor used the right words to explain the material.”
“The discussions among the group were very beneficial.”
“The instructor showed very resourceful background and experience.”
“All sections of the course were related to my field.”
“Adequate answers were given to specific questions.”


1 day – The training will commence at 09.00 and finish at 17.00, with appropriate refreshment breaks.

To register for this training, please email team@sassofia.com or Call +359 28210806

Download PDF Enquire