STAINLESS France achieves AirCyber Bronze certification:
a key milestone in our Cybersecurity journey

In today’s global geopolitical and economic context, the risks of cyber-attacks have become one of the major threats facing businesses.

Aware of these risks, particularly in the Aeronautics and Defence sector, the leading aerospace equipment manufacturers and constructors (AIRBUS – SAFRAN – DASSAULT – THALES) created a body to combat cybercrime, BOOST AEROSPACE, and established a cyber-maturity framework called AIRCYBER.

This framework of 189 questions is designed to secure the entire Information System (IS) through physical, IT and documentary controls. It leads to 3 levels of certification (Gold – Silver – Bronze), depending primarily on the company’s structure, size and type of activity (the Gold level being more suited to large Tier 1 companies).

Certification is subject to an audit by a regulatory body (we chose AFNOR) and all questions are analysed and validated, regardless of the certification level targeted. This results in a maturity percentage at each level, with a minimum score of 90% required to obtain the relevant certification.

STAINLESS France received several requests from its aeronautics and defence clients to initiate the AIRCYBER certification process. From the very first requests, we decided to launch this initiative in 2025.

Although we already had a number of protections in place, we had to work for several months with our IT partner ADMX to establish a secure and reliable Information System. We engaged the entire company in meeting these requirements and strengthening our protections.

We completed our certification audit in April, and the audit report was validated by the BOOST AEROSPACE committee in May. With a Bronze-level maturity score of 91%, we successfully obtained our AirCyber Bronze certification.

Thanks to this certification, we have first and foremost reduced the risks of cyber-attacks, and we are now also able to respond positively to our clients’ requirements. Indeed, what were initially recommendations to become certified have now become firm requirements from some of our clients, with a minimum Bronze level, confirming that our decision to pursue AIRCYBER certification was the right one.

We will now continue our Cybersecurity improvement efforts and keep working on the remaining open points, with the aim of progressing towards the higher certification levels. In fact, we only have 4 points left to address to reach 100% at Bronze level (mainly documentary points), and our last audit showed a maturity level of 64% at Silver and 37% at Gold.