EASA Part-IS is Here. Cybersecurity Compliance is not optional. Are You Ready? As the aviation industry integrates EASA Part-IS (Information Security) regulations, the responsibility falls on Part 145, Part CAMO, and Operations to ensure their digital perimeters are as secure as their physical aircraft. To support the industry in meeting these critical deadlines, Sofema Online…

The introduction of EASA Regulation (EU) 2023/203 marks a major shift in how aviation organisations must manage and protect information security across all operational domains. As the industry moves toward full compliance by 2026, organisations are facing practical challenges – from developing a comprehensive Information Security Management System (ISMS) and integrating it with existing SMS…

Sofema Aviation Services (SAS) considers the key issues to be faced by the Part CAMO Organisation when implementing PART IS & Regulation (EU) 2023/203 regulatory requirements Introduction The potential for information security and cyber exposure within an EASA-compliant Part CAMO (Continuing Airworthiness Management Organisation) is significant and growing, particularly as digital transformation, remote access, and…

Sofema Aviation Services (SAS) considers the challenges related to phishing, ransomware, data breaches, and insider threat exposures (both intentional and accidental) within the context of EASA Part 145 organizations, together with a high-level mitigation review. Introduction The European Union Aviation Safety Agency (EASA) mandates comprehensive management of information security risks in aviation to safeguard operations,…