Sofema Aviation Services (SAS) considers the challenges related to phishing, ransomware, data breaches, and insider threat exposures (both intentional and accidental) within the framework of an EASA Part 145 organization. Challenges in Cybersecurity for Part 145 Organizations EASA Part 145 organizations, as integral components of the aviation safety chain, face distinct challenges in managing information…

Sofema Aviation Services (SAS) takes a view on the role of the EASA Cyber Security Framework to address Stakeholder Needs, Legal Basis, and Policies for Collaboration and Information Sharing. Introduction – Stakeholder Needs Stakeholders in the aviation ecosystem include airlines, airports, air navigation service providers (ANSPs), manufacturers, maintenance organizations, and authorities. Their needs within the EASA Cyber Security focus on: Risk Management Identifying Threats: Stakeholders…

Sofema Aviation Services (SAS) www.sassofia.com – considers potential exposures across Multiple Aviation Cyber Security Domains Best Practice Considerations Conduct regular risk assessments to identify vulnerabilities and assess potential impacts. Implement a risk management framework that addresses both technical and operational risks specific to the Domain operation. Implement a layered security approach that combines multiple security measures,…