We use necessary cookies to make our website work. We'd also like to use optional cookies to understand how you use it, and to help us improve it.

For more information, please read our cookie policy.

UK Civil Aviation Regulations

These are published by the CAA on our UK Regulations pages. EU Regulations and EASA Access Guides published by EASA no longer apply in the UK. Our website and publications are being reviewed to update all references. Any references to EU law and EASA Access guides should be disregarded and where applicable the equivalent UK versions referred to instead.

The CAA Cyber Security Policy Team lead in the development of the strategic direction of Cyber Security Policy in UK Aerospace.

Acting as the focal point for Cyber Security Policy within the CAA, the team contributes to the delivery and development of the Oversight and Certification cyber frameworks to satisfy the UK and worldwide aviation cyber regulatory responsibilities. The team also provides direct links to the Department for Transport, National Cyber Security Centre, Other Government Departments, and external stakeholders to ensure alignment and policy development is fully communicated.

The policy team sets the strategic direction of Cyber Security in UK aviation, feeding into the UK’s National Cyber Security strategy through the development of future cyber regulations, standards, and guidance as well as representing the UK in national and international cyber forums.

The team has a direct responsibility for UK Aviation Cyber Security rulemaking activities, including regulatory consultations and impact assessments and leading on regulatory responses to cyber security risks and threats. This includes the future implementation of the European Aviation Safety Agency (EASA) Part–IS, a new set of cyber regulations significantly widening the scope of existing safety and security requirements by means of a horizontal measure based on risk assessment.