Sofema Aviation Services (SAS) Considers Aerodrome Information Security Management System (ISMS) obligations to be observed by Feb 2026 Introduction In today’s increasingly interconnected aviation landscape, the risk to information systems is growing rapidly. With the proliferation of digital infrastructure supporting critical airport functions—from airside operations to baggage handling—the need for a robust Information Security Management…

Sofema Aviation Services (SAS) considers the challenges related to effective EASA compliance audit oversight Reality Check – Attempting to hide information during an audit is not only a red flag but may constitute a reportable occurrence depending on the impact on safety or compliance. As a Compliance Auditor, you must remain impartial but firm, safeguard…

Introduction This document considers typical structure of an EASA Compliant ERP – however to note that each operator should configure For an aviation operator regulated under EASA rules, the Emergency Response Plan (ERP) must be a controlled, structured, and systematically maintained document that aligns with EASA’s regulatory framework, industry best practices, and ICAO standards. The…

How to Use This Risk Register in Safety System Benchmarking & Analysis Benchmarking: Compare your cargo airline’s risk exposures against industry best practices, EASA requirements, and peer organizations. Analysis: Prioritize risks based on likelihood and severity, evaluate existing controls, and identify gaps in hazard mitigation strategies. Continuous Improvement: Regularly review and update the risk register,…