BACK

VIRTUAL COURSE

EASA Part-IS Essentials for Managers Course

Introduction

Please note that this course is not intended to replace the comprehensive three-day PART-IS course.

For a more detailed and in-depth understanding, participants are encouraged to refer to the full three-day PART-IS course, which offers extensive coverage of the subject matter.

 

The aim of this course is to provide Accountable Managers, CA Managers, and Head of Design Organisations with a comprehensive yet time-efficient training solution by condensing the essential elements of the PART IS course into a single day, addressing the challenge of their possible limited availability for a three-day program.

This course provides a one day overview of the new regulatory framework on the ISMS (Information Security Management System) by EASA in connection with the requirements for the management of information security risks with a potential impact on aviation safety. The course is specific for the Accountable Managers / Head of Design Organisations / Managers of the CA.

By the end of the course, participants will be able to:

Module 1: Introduction

  • Understand the interdependencies between safety, security, and information security in relation to aviation safety.
  • Describe industry examples that illustrate the impact of information security on safety.

Module 2: Understanding the Rationale

  • Summarize the key points of EASA Opinion 03/2021 on the management of information security risks.
  • Explain the rationale behind the development of an additional legal framework for information security in aviation.

Module 3: The Regulations

  • Understand the main provisions of Commission Implementing Regulation (EU) 2023/203 and Commission Delegated Regulation (EU) 2022/1645.
  • Distinguish the above regulations with other frameworks such as NIS 2 and security regulation.

Module 4: Overview of Requirements

  • Understand the key aspects under Organisation requirements outlined in Part IS.
  • Understand the key aspects under Authority requirements outlined in PART IS

 Module 5: Conclusion and Takeaways

  • Discuss the current implementation landscape, identify gaps, and propose possible steps forward.

Course Content

Upon completion of this course you will be able to:

  • Recognise the objective of the EASA regulatory framework.
  • Understand the requirements relating to the Management of Information Security Risks.

Learning Objectives

Upon completion of this course you will be able to:

  • Recognise the objective of the EASA regulatory framework.
  • Understand the requirements relating to the Management of Information Security Risks.

Who should take this course

  • The Manager in the CAA
  • The Accountable Manager in Organisations
  • The Head of Design Organisation (in the case of Design Organisation)

Pre-requisites

Essential:

  • Participants should hold a senior leadership position such as Accountable Manager, Head of Design Organisation, Manager within a Civil Aviation Authority (CAA), or an equivalent role with similar responsibilities.
  • Prior completion of the EASA PART IS 3-day course or equivalent training is highly recommended.

 

Please note: Participants are kindly requested to bring a laptop to the course, as training materials will be provided exclusively in electronic format.