Trying to reconnect to server.

Cannot connect to server, please reconnect.

Connection to server rejected, please reload the page.


Cyber Security Basic Training

Course Description

This course covers the fundamentals of cybersecurity, including threats, vulnerabilities, and the tools, technologies, and management techniques used.

To effectively manage the cybersecurity function within a business, a thorough understanding of its language and context is essential. This course covers the fundamentals of cybersecurity, including threats, vulnerabilities, and the tools, technologies, and management techniques used.

In the context of the modern digital landscape, almost every facet of life relies on the global digital infrastructure. The aviation industry, in particular, has undergone a digital transformation to meet the growing demand for air travel. While this transformation has facilitated rapid growth and safe operations, it has also exposed the industry to cybersecurity risks from various angles. A successful cyber-attack could have significant consequences, impacting the sector's finances, reputation, service continuity, and even the safety and security of individuals and facilities.

Hence, this one-day basic course aims to emphasize the importance of a foundational understanding of cybersecurity and the potential repercussions of a cyber-attack.

Course Content

  • The Significance of Cybersecurity
  • Vulnerabilities in the Aviation Industry
  • Understanding Hackers
  • Securing Your Personal Work Environment
  • Potential Incidents or Attacks
  • Types of Internet Security Threats
  • Internet Security Solutions
  • Legal Issues
  • System Design & Resilience
  • The Human Element and Social Engineering
  • Incident Reporting
  • Conclusion

Prerequisites

The training course has been designed for anyone that would like to understand the basics of cybersecurity and why it is such an important topic.

Course duration

1 days (7 hours)

Maximum number of participants

10

Cyber Security Refresher Training Course

Course Description

In this refresher course, participants will be informed about the most recent regulatory changes in cybersecurity. They will engage in a review of recent cybersecurity incidents through case studies and receive updates on current best practices and developments. Keeping abreast of the latest advancements, regulatory updates, and insights gained from recent cybersecurity events is a crucial aspect of maintaining effective cybersecurity. Throughout the course, various publications will be examined, and real-life cases will be discussed and analysed. Whenever feasible, practical exercises and simulations will be incorporated to enhance the learning experience.

Course Content

  • Regulation Refresher and Regulatory Updates
    • Legal update
  • Developments in Aviation
    • How has/will the aviation industry evolve in the medium term
  • Case Studies & Trends
    • Review of recent cybersecurity events
    • New trends based on recent attacks
    • Updated best practices for cybersecurity management
  • Autonomous Vehicles & New Market Entrants
    • Cybersecurity of autonomous vehicles (drones)
    • Privacy in CAVs
    • Autonomous vehicle security: economics and wider landscape
    • Conclusion
    • Overview of New Market Entrants

Prerequisites

The training course has been designed for anyone that has prior knowledge in the area of cybersecurity.

Course duration

2 days (15 hours)

Maximum number of participants

10

Cyber Security Initial Training

Course Description

The global digital infrastructure underpins nearly every facet of contemporary life. The aviation industry, in response to the escalating demand for air travel, has undergone a digital transformation, facilitating rapid growth while ensuring safe operations. However, these technological advancements have exposed the industry to cybersecurity risks from various angles. A successful cyber-attack could significantly impact the sector's finances, reputation, service continuity, and the safety and security of individuals and facilities.

In recognition of these challenges, a comprehensive Initial course has been developed to emphasize the necessity for a fundamental understanding of cybersecurity and the potential consequences of a cyber-attack.

An effective information security awareness training program is crucial for all levels of management and employees within a business or organization, as they often represent the weakest link in information security. Without such a program, the success of an information security program is questionable.

Managers and employees are unlikely to adhere to corporate policies if they lack an understanding of the associated risks and repercussions. In the guise of convenience, they may compromise security, posing a significant threat.

It is imperative for process owners and those with access to systems and data to be cognizant of cybersecurity risks. They need to comprehend what actions they can take to safeguard their personal security, as well as that of their company or organization and the critical infrastructure it relies upon.

Course Content

  • Introduction to Cybersecurity
    • Significance of Cybersecurity
    • Aviation Industry Vulnerabilities
    • Hacker Profiles
  • National Security
    • State Obligations
    • National Security Structures
    • Planning for National Security
    • Protection of Critical Infrastructure
  • The Work Environment
    • Personal Work Environment
    • Incident Preparedness
    • Types of Internet Security Threats
    • Internet Security Solutions
  • The Human Dimension and Factors
    • Human Dimensions of Cybersecurity
    • Human Influence on Cybersecurity
    • Cybersecurity Culture
    • Human Behaviour in Cybersecurity
  • Programs for Cybersecurity
    • System Design & Resilience
    • Human Factors and Dimensions
    • Security Controls for Prevention
    • Conclusion
    • Case Studies

Prerequisites

The training course has been designed for anyone that would like to understand the basics of cybersecurity and why it is such an important topic.

Course duration

3 days (22 hours)

Maximum number of participants

10

Cyber Security Expert Training Course

Course Description

In this cybersecurity and resilience training course, participants will gain a comprehensive understanding of the challenges faced by the aviation industry. The course will delve into specific cybersecurity objectives, addressing human factors and design considerations. Practical insights will be provided through case studies, offering a deeper practical perspective on the theoretical knowledge acquired.

Upon completing this course, learners will be equipped to:

  • Define key cybersecurity concepts and terminology.
  • Identify cybersecurity threats.
  • Recognize strategies to discover and remediate vulnerabilities in information assets.
  • Identify the essential systemic components, including personnel, necessary for an effective cybersecurity program.
  • Amidst a technology boom in the transport and aviation sectors, the widespread use of Commercial Off-The-Shelf (COTS) products, standardized communication protocols, and the integration of information communication technologies in lieu of legacy systems are shaping a digital era in aviation. This transformation introduces a critical concern: cybersecurity. Systems are no longer isolated; they are interconnected, creating opportunities for malicious activities.

    In the context of a new era marked by autonomous aerial weapons and heightened reliance on cyber warfare, the significance of cybersecurity has escalated. Criminal elements are actively seeking opportunities across various industrial sectors, including banking, critical infrastructures, e-commerce, and aviation. As digitalization and service integration continue to rise, these threats are becoming increasingly tangible.

    Effective protection requires a comprehensive understanding of the cybersecurity landscape, encompassing both the overarching framework and intricate details. Improving security levels is imperative, as cybersecurity's effectiveness is contingent on fortifying the weakest link in the chain.

    Course Content

    • National Security
      • Obligation of the State derived from international regulations
      • National security arrangements
      • National security planning
      • Critical infrastructure and its protection
    • Modernisation in Aviation
      • Drivers of change in the transport sector
      • Convergence of OT and IT
      • Cross sector examples on modernisation
      • Aviation modernisation
      • Conclusions
    • Navigating the Transport System Security Landscape
      • Context
      • Transport system evolution
      • What are we trying to protect?
      • Threats and vulnerabilities
      • Impacts
      • Cybersecurity incidents in transport
      • Responding to challenge
      • Regulations, standards, and guidance material
      • Conclusions
    • Security and Safety
      • Safety Management
      • Safety risk management
      • Safety assurance
      • The safety case
      • The security case
      • Safety Support Assessment (non-ATS providers)
      • Linking cybersecurity with safety
    • Conclusions
    • Prevention Security Controls
      • Designing in security through better software
      • Encryption
      • Internet security
      • Passwords
      • Malware protection
      • Firewalls
      • Email security
      • Conclusion
    • Threat Identification, Monitoring and Detection
      • What are threats and how do we detect them?
      • Monitoring and detection technologies
      • Services
      • Conclusion
    • Technical Responses and Correction
      • Preparation
      • Incident analysis and investigation
      • Incident remediation
      • Closing remarks
      • Case study – surviving the extinction event

    Prerequisites

    The target audience of this course are people with an IT background, and or safety and security experts, that would like to have a deeper understanding of cybersecurity and why it is an important topic in the aviation environment.

    Course duration

    5 days (37 hours)

    Maximum number of participants

    10

    Cyber Security Advance Training

    Course Description

    This course provides trainees with an overview of international and national regulations, as well as the responsibilities towards the National Aviation Authority and ANSP, along with an introduction to critical infrastructure.

    The transportation industry, including aviation, is experiencing a rapid technological evolution. Common Off-The-Shelf (COTS) products are extensively utilized, communication protocols are standardized, and information communication technologies are replacing legacy systems. This technological shift propels us into the digital era of aviation, introducing a critical concern: cybersecurity. Systems are no longer isolated; they are interconnected, creating opportunities for malicious activities.

    In the backdrop of a new era featuring autonomous aerial weapons and an increased reliance on cyber warfare, the importance of cybersecurity has never been more pronounced. Criminal elements are seeking to exploit vulnerabilities across various industrial sectors, including banking, critical infrastructures, e-commerce, and aviation. With the continual digitization and integration of services, these threats are becoming more tangible.

    To ensure effective protection, it is imperative to comprehend both the broader landscape and the intricacies of cybersecurity. Enhancing security levels is crucial because, in cybersecurity, the strength of the weakest link determines the overall level of protection.

    Course Content

    • Refresher of National Security
      • Obligation of the State derived from international regulations
      • National security arrangements
      • National security planning
      • Critical infrastructure and its protection
    • Modernisation in Aviation
      • Drivers of change in the transport sector
      • Convergence of OT and IT
      • Cross sector examples on modernisation
      • Aviation modernisation
    • Modernisation in Aviation Continued
      • The changing environment
      • Research themes
      • Cyber and data solutions can help with physical security issues
      • Securing the decision-making process in autonomous systems
      • Securing inputs
      • Securing communications
      • Building trust between the human and the autonomous machine
    • NAVIGATING THE TRANSPORT SYSTEM SECURITY LANDSCAPE
      • Transport system evolution
      • What are we trying to protect?
      • Threats and vulnerabilities
      • Impacts
      • Cybersecurity incidents in transport
      • Responding to challenge
      • Regulations, standards, and guidance material
      • Conclusions
      • Forthcoming developments
    • Technical Responses and Correction
      • Preparation
      • Incident analysis and investigation
      • Incident remediation
      • Closing remarks
      • Case study – surviving the extinction event
    • Cybersecurity in System Design
      • What is a secure system?
      • The phases of cybersecurity
      • Built a cybersecurity plan
      • The system design and development process
      • Cybersecurity in the design and development process
      • Design cybersecurity methodologies
      • Cybersecurity verification and validation
      • Cybersecurity impact on costs and performance
      • Information versus system security
      • Case study – ATM system
    • The Human Dimension and Factors
      • Understanding the human dimensions of cybersecurity
      • Human influence on cybersecurity
      • Human understanding of cybersecurity – cybersecurity culture
      • Human behaviour impact in cybersecurity
      • Human factors/Human dimensions
      • How to investigate the human dimensions of cybersecurity
      • Conclusion
      • Case study
    • Autonomous Vehicles
      • Cybersecurity of autonomous vehicles (drones)
      • Privacy in CAVs
      • Autonomous vehicle security: economics and wider landscape
      • Aviation case study
      • Conclusion

    Prerequisites

    The target participants of the training are primarily the ATSEP and IT development and operator staff of an ANSP, but anyone can have deeper knowledge of the cybersecurity challenges of the nowadays ICT systems.

    Course duration

    5 days (37 hours)

    Maximum number of participants

    10