• Workshop Programme

    Aviation Cyber Resilience Workshop 2: Crisis and Incident Response with a Focus on Stakeholder Roles and Responsibilities


    0830 – 0900hrs

    Recap from Workshop 1

    Keynote Speaker: Dr. Tobias Feakin, Australian Ambassador for Cyber Affairs

    Session 1: Panel: Stakeholder’s Perspective on Cyber Resilience

    Moderator: Dr. Tobias Feakin, Australian Ambassador for Cyber Affairs, Australian Government, Department of Foreign Affairs and Trade


    • Ross Lockie, ICAO Regional Officer (APAC), Aviation Security and Facilitation
    • Saket Modi, Lucideus Chief Executive Officer (CEO) and Co-Founder
    • Elsie Ong, SITA Cyber Security Senior Business Development Manager
    • Jasmin Harvey, Qantas Airways Limited Head of Group Cyber Risk, Resilience and Governance

    Aim: Going beyond cyber security, this session aims to learn from key aviation stakeholders (government, security regulators, ATM, airport authorities, airports, airlines, and aviation system providers) their perspective on what does having good cyber resilience systems mean in their operations. 


    1. To understand key aviation stakeholders’ definition and framework of a robust cyber resilience system in the aviation industry. 
    2. To highlight opportunities for collaboration between aviation stakeholders in order to strengthen aviation systems cyber resilience. 

    0900 – 1030hrs

    Photo Session and Coffee Break (1030-1100hrs)

    Session 2: Simulation: Cyber Incident Causing Disruption at a Major Airport

    Moderator: Jasmin Harvey, Qantas Airways Limited Head of Group Cyber Risk, Resilience and Governance

    Aim: To raise awareness of the impacts a major cyber incident to help participants identify gaps and improvement opportunities.


    1. To provide participants the opportunity to participate in a cyber simulation exercise to help them identify key learnings and potential gaps in their own cyber incident response frameworks.
    2. To demonstrate the impact of a cyber incident on a major airport and the stakeholder groups impacted including airports, airlines, government organisations (including border and customs, civil safety and security authorities), air traffic control and service providers.
    3. To highlight the need for a cyber incident response framework which integrates with an organisations crisis management framework. 

    1100 - 1300hrs

    Lunch Break (1300hrs to 1400hrs)

    Session 3: Best Practice and Cyber Incident Response - Interdependencies in the Aviation Ecosystem

    Moderator: Richard Watson, Ernst & Young Lead Partner APAC Cyber

    Aim: To highlight how different stakeholders in the aviation ecosystem are independent in the event of a cyber incident and to share a best practice approach to incident response.


    1. To share an external perspective on what is best practice in the field of cyber incident response.
    2. To have participants workshop their incident response interdependencies with other stakeholders in the airline ecosystem through a cyber risk scenario development exercise.
    3. To raise a call to action for stakeholders to return to their organisations to build capacity in cyber incident response where gaps have been identified.

    1400 - 1530hrs

    Coffee Break (1530-1600hrs)

    Session 4: Cyber Crisis Communications

    Moderator: Ong Chin Beng, Singapore Ministry of Transport Senior Assistant Director Security Policy

    Aim: When a cyber incident happens, the preparedness level of the operations, incident response and crisis communication teams are put to the test. Regulator and affected organization have the responsibility to make sure that their stakeholders, media and the general public feel that they are in safe hands to maintain public confidence. 

    The ability to handle media well during a public cyber crisis requires established processes and planning to handle such an event. This includes effective co-ordination between the crisis communication/spokesperson for an organisation, the operations and incident response teams, in managing the crisis, providing consistent updates to internal and external stakeholders on what is happening and the process to provide regular communication.

    There will be questions and often assumptions made in relation to the cyber incident.  Internal and external stakeholders will be pressing for updates on what will happen next


    1. Understand the need to diffuse the pressure and ensure accurate and timely information flows are achieved in time of cyber incident
    2. Appreciate the tools and methods available
    3. Understand the need to have drawer plans and established processes


    Session 5: Conclusions and Overview of Workshop 3

    1700 - 1730hrs

    Closing 1730hrs


    Note: All participants must register online prior to their attendance to the workshop. Registration to the workshop is free for all participants, there are no fees associated with attending the event.  It must be noted space is limited, and therefore registration will be on first-come, first-served basis. Early registrations are highly recommended due to the high number of expected delegates

    Organized by:


    Supported by:


    Hosted by:


Or share this link:



powered by XING Events

Event organiser: Association of Asia Pacific Airlines
More participants thanks to online event management solutions from XING Events.