BACK

VIRTUAL COURSE

Cyber Security in Aviation

Introduction

Cyber security is vitally important to the aviation sector which is heavily reliant on computer-based systems and information management. Airport and airline systems are potential targets for hacking and compromise by criminals and terrorists who wish to exploit vulnerabilities for gain or to cause harm. The course considers current and emerging cyber threats and practical countermeasures that can help reduce the risk of attack or compromise and provide reassurance.  

The course will provide attendees with a risk assessment methodology which they can apply in their own workplaces, and an understanding of how the cyber threat can quickly create serious consequences for aviation operations.

Regulations concerned:

• ICAO Annex 17 (Tenth Edition, April 2017)
• ICAO global Risk Context Statement (RCS)
• The Convention against Transnational Organised Crime (The Palermo Convention) 2000

  • Cyber threat motives and sources
  • Cyber security risk assessment
  • User education and awareness
  • Home and mobile working
  • Secure configuration
  • Removable media controls
  • Managing user privileges
  • Incident management
  • Monitoring, audit and quality control
  • Malware protection
  • Network security
  • Cyber security controls
  • EU General Data Protection Regulation (GDPR)

Interactive activities during the course:

• Individual and group exercises and discussion topics
• Analysis of case studies affecting the global aviation sector
• Problem-solving activities based on aviation sector examples

Course Content

  • To describe the current cyber threat landscape
  • To identify the threats and risks from possible cyber incidents on civil aviation operations and critical systems, and their consequences;
  • To explain the responsibilities of national agencies and industry stakeholders with regard to cyber security in civil aviation;
  • To advocate and adopt a robust all-round cyber security culture within the aviation sector;
  • To explain and use the ’10 steps to cyber protection’

To conduct a cyber security risk assessment;

Learning Objectives

  • To describe the current cyber threat landscape
  • To identify the threats and risks from possible cyber incidents on civil aviation operations and critical systems, and their consequences;
  • To explain the responsibilities of national agencies and industry stakeholders with regard to cyber security in civil aviation;
  • To advocate and adopt a robust all-round cyber security culture within the aviation sector;
  • To explain and use the ’10 steps to cyber protection’

To conduct a cyber security risk assessment;

Who should take this course

This is an awareness course that has widespread application to supervisors, managers and senior managers. It is not a technical course and is intended for those in leadership positions working on airlines, aviation authorities, ground handling, airport operators, suppliers, law enforcement, immigration authorities, or aviation shopping outlets. 

Pre-requisites

Essential:

None. The course is an awareness-raising course and has universal relevance to all organisations and individuals working in the aviation sector.