The CAA regularly host events for the public and industry to collaborate on issues and challenges within cyber security, and also to participate in consultations around changes to regulations and new legislation.
Details about future events and how to register is available on request.
Aviation Cyber Forum
The Civil Aviation Authority (CAA) hosts a biannual meeting of aviation cyber security professionals from Department for Transport (DfT), National Cyber Security Centre (NCSC) and aviation organisations, enabling collaboration on cyber security issues and challenges, and the sharing of information in relation to common challenges and lessons learned.
As part of this group the CAA, DfT, NCSC and industry experts will:
- Provide aviation cyber updates.
- Educate on various topics including good practice, approaches to common challenges, lessons learned.
- The CAA Aviation Cyber Forum will provide an opportunity for attendees across the aviation sector to collaborate on common aviation cyber topics.
- The CAA Aviation Cyber Forum will provide an opportunity for the aviation sector to raise concerns and common challenges with the CAA, DfT and NCSC to prioritise and support future work in aviation cyber security. This will also inform future agendas.
Cyber Security Industry Working Group (CSIWG)
This group is a multi-stakeholder group formed of UK aviation industry, government, CAA Aerospace Cyber Security, other relevant CAA teams and invited ASSURE Cyber Suppliers. The meetings of the Group will feed into National Aviation Security Committee governance.
The CSIWG will meet regularly to:
- collate and discuss cyber security risks which impact the aviation sector
- improve information sharing and expertise between parties
- enable discussion on progress against required actions, sharing good practice and relevant interests
- provide visibility of CAA cyber security direction and regulatory pipeline
- provide an opportunity to discuss proposals to gather insights and possible impacts such as changes to guidance
- enable parties to raise cyber security concerns and issues
- create sub-groups which draw on expertise of the stakeholders to reduce identified risks or complete projects that improve the cyber security of the sector
- to progress work against the Data Dependencies Study recommendations relevant to the group, including standardisation for third party assurance.
The CSIWG will identify and agree on projects which require sub-groups and define their high-level deliverables.