AT027 Course Goal:
Providing aviation professionals with a comprehensive introduction to EASA’s new Information Security requirements (Part-IS) and practical guidance for implementing an Information Security Management System (ISMS).
Target Group
- Accountable Managers and Nominated Persons across all aviation domains (Flight Operations, Design & Production Part-21, Continuing Airworthiness CAMO, Maintenance Part-145, Crew Training, Ground Operations) who are responsible for compliance with the new information security regulations.
- Safety, Quality/Compliance, and IT Security Managers in airlines, MROs, airports, and other aviation organizations – including Compliance Monitoring Managers, Safety Managers, IT/Cybersecurity Officers, and internal auditors – tasked with managing information security risks and policies.
- Civil Aviation Authority (CAA) Inspectors and Personnel overseeing information security or cybersecurity compliance in the aviation sector, who require familiarisation with Part-IS requirements and oversight procedures.
- Aviation professionals seeking to broaden their cybersecurity expertise, improve cross-domain knowledge, or enhance job performance by understanding the latest EASA information security standards.
What the Training Offers
- Expert Instruction: Learn from seasoned aviation cybersecurity and safety experts with decades of industry experience. Our instructors have been at the forefront of aviation cyber and information security, contributing to the development of standards and risk management practices. You’ll gain insights drawn from real-world implementations and regulatory development.
- Hands-On Learning: The course features an interactive format with role-specific workshops and case studiesto apply concepts in practical scenarios. A balanced mix of presentations, exercises, experience sharing, and group discussions ensures an engaging learning experience grounded in real aviation scenarios.
- Practical Application: Understand how to interpret abstract information security requirements and connect them with day-to-day aviation operations. Through real incident examples and best-practice frameworks, you will learn not just the “what” of the regulations but how to implement them effectively within your organization.
Competitive advantages of this training
- Proactive Compliance – Save Time & Costs: Preparing your organization before Part-IS audits and enforcement begin can dramatically reduce the cost and effort of fixing compliance gaps later. Preventing security findings or incidents before they arise is the best way to avoid expensive remediation and potential fines. This training enables you to address vulnerabilities now, rather than reactively later.
- Early Adopter Edge: Part-IS is a new regulation generating high demand for skilled personnel. By joining one of the first training courses of its kind, you position yourself and your company ahead of the curve. You’ll be among the early adopters mastering these requirements, giving your organization a competitive advantage in regulatory readiness.
- Modern Training Methodology: The course is designed following ICAO’s latest Competency-Based Training (CBT) principles to maximize learning effectiveness. This ensures that the skills and knowledge gained are directly applicable to your role, with measurable outcomes that meet both your professional development needs and the regulation’s expectations.
- Integrated Perspective: Part-IS does not exist in isolation – it aligns with broader cybersecurity standards and directives. Our training integrates references to international frameworks like ISO 27001/27002 and NIST, as well as the EU NIS2 directive, to show how Part-IS requirements map to global best practices. You’ll gain a holistic understanding of information security management in aviation, avoiding duplication of effort and ensuring consistency across compliance obligations.
Which takeaways will I have from the training?
- Understanding EASA’s Info-Security Framework: Recognize the objectives of EASA’s information security regulatory framework and why managing cyber risks is vital for aviation safety.
- Regulatory Requirements & ISMS: Explain the structure of the Part-IS regulation and its key requirements for managing information security risks. You will learn what an Information Security Management System (ISMS) entails and how to implement it within an aviation organization in line with EASA rules.
- Implementation & Oversight Know-how: Describe the implementation steps that an organization must take to comply with Part-IS (from risk assessment and incident reporting to continuous monitoring), and understand the oversight responsibilities of competent authorities under Part-IS. Both industry and authority perspectives are covered, preparing participants on “both sides of the audit table.”
- Relationship to Other Frameworks: Understand how Part-IS relates to other regulatory frameworks, such as existing national security regulations and the EU NIS2 cybersecurity directive, in order to avoid overlapping efforts and ensure streamlined compliance where multiple frameworks apply.
- Use of AMC & Guidance: Gain familiarity with EASA’s Acceptable Means of Compliance (AMC) and Guidance Material for Part-IS. You’ll know where to find and how to use these resources to support your implementation and audits, ensuring you’re using the latest EASA guidance in your InfoSec program.
Advantages if purchased as an in-house training at your company’s premises:
- Every Operator has its own challenges when it comes to complying with legal requirements and closing possible findings. Let’s discuss your specific cases during your exclusive in-house training
- Attractive pricing
- Advantageous from as little as four up to 20+ participants
- Can be freely customized to company-specific requirements as an extra service
- Your company-specific questions can be discussed in depth
EASA Part IS
Concept, mechanism and details of the EASA Part IS regulatory framework
Location:
Remote – Central Europe local time
15.12. – 16.12.2025Time:UTC +1Central European Time (CET)
Course language:English
Price:1.990,00 €
