EUROCAE, the European standards organisation for aviation.
Civil aviation is an increasingly attractive target for cyber-attacks. New technologies such as e-enabled aircraft, new generation CNS/ATM systems and drones are changing the risk landscape of the aviation system. At the same time, there is growing demand for guidance and leadership in cybersecurity, where EUROCAE WG-72 has brought a significant technical contribution through four EDs: ED-201, 202A, 203 and 204.
Helios has leading expertise in the field of cyber-security and SecMS. Consultant Matt Shreeve has specialist experience in aviation cyber-security and resilience – both at policy and technical levels. He also led the major SESAR cyber-security study in 2015, is the Secretary for WG-72 ED-205 Sub-group and is also a qualified ISO 27001 (Information Security Management System) Lead Auditor.
Helios is also experienced in developing and delivering successful training courses - both in our own right and under licence, so EUROCAE invited us to develop a new and bespoke two-day training course for them, to share best practice in cybersecurity standards in aviation.
Role of Helios
- Set out the Learning Objectives for the course and a proposed content outline.
- Gather feedback on the proposed structure and content from a selection of fellow experts from WG-72.
- Develop all course materials, including interactive exercises and handouts.
- Design certificates.
- Support EUROCAE with event planning, promotion and evaluation.
- Liaise with delegates in advance of delivery.
- Deliver the training course on two occasions in March 2018.
- Conduct a review of the training and make recommendations for iterations.
Helios designed a content-rich interactive training course, with plenty of opportunity for delegates to embed learning with group and individual exercises.
The first training course took place at EUROCAE headquarters in Paris and attracted participants from all walks of aviation life and from across three continents. It was oversubscribed and was quickly followed by a second course a few weeks later.
The programme covered key concepts and challenges, for instance the similarities and differences between safety and security. Standards will play a big part in linking rules to practice, so awareness of the latest regulatory developments was crucial to many.
The training then moved on to look at the standards landscape, exploring which groups have produced what standards and guidance. This included aviation-specific standards (eg from EUROCAE and CEN) and non-aviation-specific cyber standards (eg from ISO and NIST), covering airworthiness, ATM/CNS, airports and more general standards.
The course was a resounding success, with 95% of attendees rating it good, very good or excellent. The instructor, Matt Shreeve, achieved 100% good/excellent ratings. Further dates are planned for later in 2018.
For further information on this project please contact Matt Shreeve.