Sofema Aviation Services (SAS) is proud to announce the release of two highly detailed Information Security Management System (ISMS) Process Review Documents – specifically tailored for EASA Part-CAMO and EASA Part-145 organizations.
These expert-reviewed resources are now available free of charge in the Sofema Library
These documents provide comprehensive guidance on how organizations can structure and assess their Information Security Management System (ISMS) framework to meet the rigorous requirements of EASA Regulation (EU) 2023/203 and associated AMC/GM material. For any organisation looking to build, review, or enhance its cybersecurity and data protection posture within the Continuing Airworthiness (CAMO) and Aircraft Maintenance (Part-145) environments, these documents deliver practical insights and implementation strategies aligned with regulatory obligations.
“Our commitment to supporting aviation compliance is long-term, not promotional,” said Steve Bentley FRAeS, CEO of Sofema. “This is not a limited-time offer – it’s an everyday value for aviation professionals who want to demonstrate real compliance and resilience in the face of growing cyber threats.”
Key areas addressed in both documents include:
- Information Security Management System (ISMS) governance and stakeholder roles
- Interface security between CAMO, AMO, OPS, and subcontractors
- Threat and vulnerability assessments tailored to maintenance and airworthiness systems
- Guidance for implementing controls, detecting incidents, and improving continuously
- Direct alignment with IS.I.OR.200, IS.I.OR.220, and ISO/IEC 27001 principles
With approximately 900 regulatory support documents now available, the Sofema Library remains a leading open-access knowledge base for professionals committed to aviation compliance, safety, and digital security excellence.
Visit today and download your free copies:https://sassofia.com/download-area/
Tags:
EASA Part 145, EASA Part – CAMO, Cybersecurity, Aviation Compliance, ISO/IEC 27001 (Information Security Management), IS.I.OR.215 & IS.I.OR.220, Implementation of an Information Security Management System (ISMS), (Part-IS.I.OR.200), ISMS framework, EASA Regulation (EU) 2023/203, AMC/GM material, data protection, Continuing Airworthiness (CAMO), Aircraft Maintenance (Part-145), Sofema Library, digital security
