As European aviation becomes increasingly interconnected and digitally dependent, information and cyber security have evolved from technical considerations into core regulatory obligations. EASA has introduced dedicated information security requirements, including Regulation (EU) 2023/203 and IS.I.OR.240, placing clear duties, reporting criteria, and risk management expectations on aviation organisations.

This one-day intensive training provides a structured and practical understanding of EASA information security mandates, regulatory drivers, and organisational accountabilities. Participants will gain clarity on reporting obligations, structured cyber risk assessment, ISMS implementation within an EASA-compliant environment, applicable derogations, and the specific exposure risks affecting aircraft maintenance operations.

- Regulatory Compliance: Gain a clear understanding of cyber security requirements, ensuring your organisation meets the necessary standards
- Risk Management: Learn how to identify and assess cyber risks specific to aviation, strengthening your organisation’s overall security posture
- Practical Implementation: Understand how to implement an Information Security Management System (ISMS) compliant with EASA standards
- Enhanced Security: Improve internal and external security reporting practices, helping safeguard sensitive aviation data and prevent cyber threats

1. Why Are We Seeing EASA Mandated Regulations related to Information Security and Cyber Security - What will this mean for European Aviation?
2. General Introduction - Part Information Security
3. Regulatory Drivers for Information Security
4. EASA Information Security Duties, Accountabilities, Responsibilities Compliant with IS.I.OR.240
5. The Potential for Information Security / Cyber Exposure in Aircraft Maintenance
6. Information Security Reporting Criteria - External & Internal
7. Information & Cybersecurity - Structured Risk Assessment Considerations
8. Implementing an ISMS in an EASA - Compliant Organisation
9. EASA Provisions for Derogation to Regulation (EU) 2023/203

- Regulatory Compliance - Gain a deep understanding of Regulation (EU) 2023/203 and ensure compliance before the 2026 deadline
- Effective Risk Management - Learn how to identify, assess, and mitigate cyber risks
- Operational Resilience - Protect critical maintenance data, IT systems, and digital operations from cyber threats
- Structured Risk Assessment - Apply EASA-compliant methodologies for cyber security risk evaluation and mitigation
- Incident Detection, Response & Reporting - Build expertise in aviation cyber security and enhance leadership skills in information security management

Course type: Presentation with voice over
Duration equivalent to one-day classroom training
Category: Part 145
Price: 89.00 EUR

•      For Individuals: SOL Plus
This program is designed for individual clients aiming to save significantly while accessing free courses throughout their online training journey.

•       For Corporate Clients: Privileged Training Program (PTP)
Empower your team with consistent training discounts and special features like Enrol Now - Pay Later and Prepay Bonus Plan.

For multiple courses/users discount please contact us at team@sassofia.com