Regulatory Guidance:

FAA Reauthorization Act-sites provisions regarding the unmanned aircraft systems-UAS cyber security.

IATA created the Cyber Security Toolkit, provides guidance related to cyber threats and risks, but is an active project. “IATA is working on the subject from different angles.

These involve data security, understanding and promoting best practice in Enterprise Risk Management and solutions that will help to protect airlines from the financial consequences of cyber events.”


The ICAO regulatory guidance is structured around Annex 17-4.9.1 , The Aviation Security Manual and the Aviation Cybersecurity Strategy, takes into consideration the multi-faceted and multidisciplinary nature of cyber security, as noted that cyber- attacks may rapidly affect a wide spectrum of areas.  The goal of the strategy is aligned with other ICAO activities relative to cyber security, as well as coordinated with the safety and security management provisions. This will be managed through the seven pillars:  the most important being governance, cybersecurity policy, incident management and emergency planning.