You can download the materials presented during this webinar.
Additionally, we have provided a downloadable document with detailed answers from our panellists to all the questions asked during the event.
Working Together for a Cyber Resilient Future in Aviation
Jointly organised with the Singapore Aviation Academy
This event has ended
Working Together for a Cyber Resilient Future in Aviation
Wednesday 24 July 2024
Ensuring robust cybersecurity oversight is paramount in safeguarding both passengers and critical infrastructure. Yet the challenges abound as technological advancements outpace regulatory frameworks and threat landscapes continually evolve. Only through a cohesive approach can the aviation industry stay ahead of the curve in mitigating cyber threats and ensuring the safety and integrity of air travel.
Post-Event Downloads
Please note, this webinar was not recorded in accordance with the event’s terms and conditions. No transcript is available.
About this webinar
This event has ended.
Jointly organised with the Singapore Aviation Academy (SAA), the training arm of the Civil Aviation Authority of Singapore (CAAS), this knowledge-sharing webinar explored regulatory approaches to cybersecurity adopted by both the United Kingdom (UK) and Singapore.
Cybersecurity professionals from aviation regulators and industry organisations were invited to attend and contribute their insights on the evolving challenges to cybersecurity and discuss how regulatory frameworks and international best practices can be applied to help mitigate and manage the growing threat.
Through engaging presentations, dynamic panel discussions, interactive sessions, and collaborative group discussions, the webinar covered:
- Current regulatory landscape and potential changes on the horizon
- Capacity building to maintain a sustainable and resilient system
- Cybersecurity threats, challenges, and opportunities
- Harmonisation and prioritisation of cyber, safety and security risks.
Agenda
- Welcome
- Insights from pre-webinar cybersecurity survey
- Overview of the current regulatory landscape and potential changes on the horizon
- Discussion session on capacity building to maintain a sustainable and resilient system
- Interactive session on cyber threats, challenges and opportunities
- Panel discussion on harmonisation and prioritisation of cyber, safety and security risks
- Closing remarks and next steps
Additional Resources & Training
Cybersecurity Oversight Training
This ICAO aviation cybersecurity oversight courses provides in-depth knowledge and insight into the cybersecurity regulations and explores how the oversight process developed by the UK CAA is one model that could be used to cover them.
Advisory Services
We support nations in developing a regulatory framework and dynamic oversight programme to meet all domestic, European and international aviation cybersecurity regulatory obligations, helping States mitigate potential risks to cybersecurity.
ICAO Cybersecurity Action Plan
The CyAP provides the foundation for ICAO, States and stakeholders to work together, and proposes a series of principles, measures, and actions to achieve the objectives of the Aviation Cybersecurity Strategy’s seven pillars.
CAP1753: CAA Cyber security oversight process for aviation
UK CAA CAP1753 details the CAA’s Cyber Security Oversight Process for Aviation, this provides the basis for all cyber security oversight activity by the CAA and includes detail of good cyber security practice against four key objectives.
Singapore Aviation Academy
The Singapore Aviation Academy (SAA), the training arm of the Civil Aviation Authority of Singapore, offers a comprehensive range of internationally recognised training programmes in various disciplines.
Meet our Speakers
Jonathan Hogben
Aviation Cybersecurity Oversight
Jonathan is responsible for Cyber Security Policy decisions and the regulatory direction across the United Kingdom aviation industry. Jon leads the Cyber Security Policy team that work domestically to provide support, guidance, and expertise to organisations, across the range of applicable cyber regulations. Jon is a member of both the ICAO Cybersecurity and Trust Framework Panels in addition to collaborating in various European cyber security forums.
Jon has over ten years of aviation regulation and policy experience. Jon started his aviation career as an Aviation Security Compliance Auditor, prior to which he held various roles within the UK Government. He then moved into Aviation Security Regulation where he first worked on Cyber through the development of the Cyber Security regulation within the National Aviation Security Programme. Jon has completed formal cyber training through ICAO, ISO, and the SANS institute.
Alcus Erasmus
Alcus has 13 years of experience working in information security roles in the transport and communication sectors. Alcus has been working for the Manchester Airports Group MAG since 2015 as Information security manager, internal penetration tester and vulnerability manager. He is currently the Head of cyber security engineering. Prior to MAG, Alcus spent 7 years working as a risk practitioner specialising in implementing Governance, Risk and Compliance framework software in financial services, pharmaceutical and telecommunication industries.
Simon Sheeran
Simon is Head of Cyber Security Oversight at the CAA, leading the industry facing Cyber oversight function seeking to improve the resilience of the UK aviation and aerospace system. Simon has been with the CAA since 2008, previously working in the Technology Team as Head of IT Operations responsible for delivering the CAA’s technology roadmap, improving agility and speed of IT teams whilst also enabling secure cloud adoption. Prior to that Simon worked in IT Managed Services and Telecommunications.
Matthew Margesson
Matt was appointed as CAAi's Managing Director in October 2023. As Managing Director, Matt is responsible for leading CAAi’s commitment to improving aviation standards globally and assisting countries to unlock the endless benefits that safe, secure, and innovative aviation brings.
Matthew has been an integral part of CAAi’s leadership team since 2009, having held senior roles including Head of International Development and latterly, Head of International Operations. As Head of International Operations, Matthew’s leadership was instrumental in assisting countries to improve compliance with ICAO requirements, streamlining regulatory operations and processes, and enhancing the overall customer experience for aviation regulators worldwide. Matthew has also championed the use of Regulatory e-Tools and directly programme-managed the implementation of e-Exams for the UK CAA and numerous Authorities globally.
Matt has almost 25 years of aviation experience in senior leadership positions, including posts that have included Group COO and CEO. Matt has proven experience in financial, business development, operations/delivery, risks, strategy and governance, and most importantly, people development and management.
Kevin Sawyer
Managing Insider Risks
Threat Image Projection – Implementation and Analysis
Introduction to Security Culture
Introduction to Human Factors in Aviation Security
Kevin has 18 years of experience working in regulatory roles in the transport sector. Kevin has been working for the UK CAA since 2014, primarily in Aviation Security regulation but also in General Aviation and most recently as aviation security lead in CAAi. Prior to joining the UK CAA, Kevin spent 12 years with the Department for Transport in a variety of security-related roles ranging from compliance, policy, strategy and head of personnel security and vetting. Kevin has significant experience of working on a number of high-profile security events and policies both domestically and internationally with a focus on risk management. Kevin has an MSc in Risk, Crisis and Disaster Management.
Ho Kee Vin
Director (Cybersecurity & Data Governance) CAAS
Ho Kee Vin is the Director for the Cybersecurity and Data Governance Division (Singapore aviation sector lead) in the Civil Aviation Authority of Singapore (CAAS). He leads a team who works closely with the aviation community to promote and enhance cybersecurity awareness and resilience. He is currently a member of both the Cybersecurity Panel and the Trust Framework Panel in ICAO.
Kee Vin has over 25 years of cybersecurity experience. He first started his career in aviation catering operations as a duty manager back in 1996. He then ventured into IT audit and cybersecurity consulting with a global accounting firm helping clients across the government, defence, and commercial sectors. Kee-Vin has since served in local and regional cybersecurity roles across various sectors such as telecommunications, and banking and finance.
Ng Hoo Ming
President, ASEAN Chief Information Officer Association, Advisor (Cybersecurity) CAAS
Hoo Ming serves in the Asean Chief information Officer Association (ACIOA) since 2021 and is appointed as the President. He was also involved in numerous cybersecurity engagements and is currently the cybersecurity advisor for the Civil Aviation Authority of Singapore.
Gaurav Keerthi
Executive Vice President, Advisory and Emerging Business, Ensign Info Security Singapore
Gaurav is currently an Executive Vice President at Ensign InfoSecurity. He represents Singapore at the United Nations Open Ended Working Group on cybersecurity. He has more than 25 years of working experience dealing with national security and policy issues.
Previously, Brigadier General (NS) Gaurav Keerthi was the Deputy Chief Executive of the Cyber Security Agency of Singapore and the Deputy Commissioner for Cybersecurity. He was formerly a pilot in the Republic of Singapore Air Force (RSAF) and rose to become the Commander of the Air Defence and Operations Command and the CIO of the RSAF. He was previously seconded to the Ministry of Trade & Industry from 2008-2010 and worked on recession recovery measures and industry development policies.
Calvin Ng
Director, Cybersecurity Programme Centre, Cyber Security Agency of Singapore.
NG Min Yew Calvin leads the Cybersecurity Programme Centre in Cyber Security Agency of Singapore (CSA). In his current role, he is responsible for the secure design & development of the advance cybersecurity capabilities and solution across strategic Whole-of- Government (WOG) and Critical Information Infrastructure (CII) systems. Led a team of engineers and consultant to provide a wide spectrum of work to secure design, review architecture and remediate incidents. This includes exploration to de-risk the adoption of emerging technology capability in operations thru security by design review. Areas of emerging technologies involved to operationalise securely are Artificial intelligence, LLM modelling, Autonomous vehicle, DLT technologies and 5G networks.
His diverse experience across CSA includes working with National Research Foundation (NRF) and industry, to co-built and develop deep R&D capability centers in universities to drive core cybersecurity capability in Singapore. He also led the taskforce from CSA to provide assurance to secure covid operational system that won the service delivery excellence award. Technical Members of the Public Service Data Resiliency and Security Committee and Medical Devices Oversight Committee to drive both technical standards and the operationalisation of medical device labelling scheme.
Prior to joining CSA, in 2010, he was heading the Singapore Armed Forces Chief Information Office (SAF CIOO) in Joint Services, he is responsible for driving IT infrastructure and Information Systems across the land, air and sea services of the Singapore Armed Forces. From a software development engineer background to driving large scale IT complex systems in Command, Control and Communications System for National Security. His passion and interest in harnessing technological development have delivered significant contribution across various national security agency in Ministry of Defence and Ministry of Home Affairs and won multiple awards.
He volunteers in various non-profit organizations and currently a board member of Allkin Singapore. Chairman of Information & Communication technology committee. Formerly known as AMKFSC community services, a leading community driven social service agency.
