ER-040 on ISMS for Aviation organisations has been published
The EUROCAE Report (ER-040) offering guidance on implementing an ISMS has been published.
The report is not a standard but a preparatory and intermediate document ahead of the publication of the relevant standard. Its purpose is to provide guidance in addressing an Information Security management system that could supplement the current Safety Management System.
This report is intended to establish the best practices for securing aviation, ensuring consistency and minimum levels of information security throughout the supply chain, and establishing a common understanding to ease audit overhead on all stakeholders.
In line with this report, important developments have been made with regards to risk management by proposing a methodology that bridges the gap between information security and safety risks and that considers the pathway to consequences when evaluating the safety impact.
The report is available on the EUROCAE website and can be purchased by following the link under the related content below.
Please log in or sign up to comment.