The CAA Cyber Security Policy Team lead in the development of the strategic direction of Cyber Security Policy in UK Aerospace.
Acting as the focal point for Cyber Security Policy within the CAA, the team contributes to the delivery and development of the Oversight and Certification cyber frameworks to satisfy the UK and worldwide aviation cyber regulatory responsibilities. The team also provides direct links to the Department for Transport, National Cyber Security Centre, Other Government Departments, and external stakeholders to ensure alignment and policy development is fully communicated.
The policy team sets the strategic direction of Cyber Security in UK aviation, feeding into the UK’s National Cyber Security strategy through the development of future cyber regulations, standards, and guidance as well as representing the UK in national and international cyber forums.
The team has a direct responsibility for UK Aviation Cyber Security rulemaking activities, including regulatory consultations and impact assessments and leading on regulatory responses to cyber security risks and threats. This includes the future implementation of the European Aviation Safety Agency (EASA) Part–IS, a new set of cyber regulations significantly widening the scope of existing safety and security requirements by means of a horizontal measure based on risk assessment.