Aviation Cyber Security

3-day (24 hours) classroom course

In an industry where almost every business depends on IT systems and the confidentiality and reliability of its data, cyber security is a fast emerging threat to operations. This course will help your organization determine where to start in what can seem like a never-ending effort to protect your information and systems. Starting with awareness training, the first and most important step to preventing cybercrime, you will learn about common attack methods used by today’s cybercriminals and the potential vulnerabilities in aviation systems. Using the insight you receive from case studies and demonstrations from IT experts, you will then learn the right questions to ask when conducting a risk assessment in an aviation business. Many airlines and airports have robust systems in place to address common hacking threats, but a holistic approach to the broader aviation IT infrastructure is still needed. Open to airline, airport, regulator and IT provider staff, this course provides a perfect platform for all key stakeholders to work toward a common framework.

Course code: SEC024VEEN02

Course format

• This classroom course provides 3 days (24 hours) of instruction delivered by an official IATA Instructor.
• Take this course at an IATA Training Center, Regional Training Partner, or on-demand as in-house training.
• Student performance will be based on an assessment.

Prerequisites

• Recommended level is Intermediate.
• The recommended level of language proficiency is ICAO Operational Level 4 for courses in English or the equivalent level for other languages.

How to register

• When you click the Register button, you will be directed to log in to your Training Account.
• Register early and save up to 25% at our Training Centers! Please read the Terms and Conditions for the early bird discount.

In-house training

Upon completing this course, you will be able to:

• Locate and prioritize cyber risks in aviation businesses
• Deploy assessment tools specific cyber related risk
• Analyze your company’s cyber risk profile
• Recommended risk mitigation processes
• Implement Cyber Security Management System (CSMS) guiding principles in your business

The key topics that are covered during this course include:

• The current cyber threat landscape
• Common methods of attack, including sniffer attacks, insider threat, trojan horse, identity spoofing, and upstream attacks
• Airline systems and vulnerabilities
• Lessons learned from real cyber security incidents
• International regulation and legislation, including ICAO Annex 17 and EU Common Security and Defense Policy
• Cyber threat assessment and risk management
• Cyber security management system as per the IATA Aviation Cyber Security Toolkit

Activities

• Team exercises
• Live demonstration of an IT system and its vulnerabilities
• Group analysis of recent cyber security incidents

This course is recommended for:

• Airline and airport security management
• IT developers and management
• Government and regulator staff
• IT service provider staff

An IATA Certificate of Completion is awarded to participants obtaining a grade of 80% or higher on all exercises and exams. A special distinction is awarded to participants obtaining a grade of 90% or higher.