🏠 AccueilNos formationsEASA PART-IS Cybersecurity

EASA's latest regulations on information security (IS) in aviation

EASA PART-IS Cybersecurity Online Training in aeronautics Description 

EASA PART-IS Cybersecurity Online Training in aeronautics Description

EASA PART-IS Cybersecurity Training Description

EASA PART-IS Cybersecurity Training Description: PART-IS (Information Security) is a regulatory training course from the European Union Aviation Safety Agency (EASA). It aims to familiarize aeronautical personnel with PART-IS requirements and principles, with a focus on cybersecurity risk management and compliance within aeronautical organizations.

New regulatory obligation from November 2025

Format

Online Training

Matériel annexe

Vidéos

Auteur

Alain François

Évaluation

QCM

Durée

20 minutes

Prix

60 €

Course Objectives

- Understand the EASA PART-IS regulatory framework and its links with other regulations (Part-145, Part-CAMO, Part-21, etc.).
- Identify the roles and responsibilities of key stakeholders (authorities, maintenance, design and operations organizations).
- Implement appropriate policies and procedures for the secure management of sensitive information and critical systems.
- Ensure organizational compliance and resilience against cyber threats by applying information security and cybersecurity requirements.​
- Integrate information security management into the Safety Management System (SMS) and daily operational practices.
- Demonstrate regulatory compliance and the effective implementation of a robust, secure management system during audits and inspections.

Content

- Introduction to EASA regulations and the PART structure.
- ​EASA Part-IS regulations: principles, objectives and key requirements.
- ​Information security and cybersecurity risk management in aviation organizations.
- Integration of information security into the Safety Management System (SMS)..
-Auditing and compliance: demonstrating effective Part-IS implementation and continuous improvement.

Benefits of training 

- Clear understanding of the PART-IS regulation and its impact on your organization..
- Ability to anticipate and meet regulatory compliance requirements.
- Effective integration of information security into daily processes and the overall management system.

Prerequisites

- Basic knowledge of the EASA regulatory framework.
- Awareness of quality or safety management systems (SMS, QMS).

Didactic method

Theoretical contributions illustrated by 
concrete examples.
Case studies from the aeronautics sector.
- Digital materials and documentation
 provided.


Target audience

- Quality, safety, and compliance managers in aviation organizations (Part-145, Part-CAMO, Part-21, etc.);
- IT managers or CIOs involved in aviation cybersecurity;
- Auditors or supervisory authorities and civil aviation inspectors;
- Managers or engineers wishing to strengthen their understanding of the link between aviation regulations and information security;
- Engineers and executives from maintenance organizations (Part-145), design organizations (Part-21), and continuing airworthiness management organizations (Part-CAMO).

Assessement

You will receive a certificate after completing a 15-question multiple-choice quiz.
An 80% correct answer is required to obtain the certificate.

EASA PART-IS Training Programm  

Frequently asked questions about EASA PART IS training

1. What is the EASA PART-IS regulation?

PART-IS (Information Security) is an EASA European regulation aimed at protecting civil aviation against risks related to cybersecurity and information security. It requires aviation organizations to implement an information security management system.

2. Who is this training for?

This training is intended for personnel in aviation organizations affected by PART-IS: air operators, maintenance organizations, service providers, technical and operational staff, management, and support functions exposed to cyber risks.

3. Does the training comply with EASA PART-IS requirements?

Yes. The training is designed to meet the regulatory requirements of EASA PART-IS, covering cybersecurity principles, risk management, governance, responsibilities, and expected best practices.

4. What are the educational objectives of the training?

The objective is to enable learners to understand the challenges of cybersecurity in aviation, identify threats and vulnerabilities, and adopt the behaviors and processes necessary to contribute to PART-IS compliance within their organization.

5. Is the training 100% online?

Yes. The introductory level training is delivered entirely online and is accessible remotely 24/7 from a computer, tablet, or smartphone, allowing for great flexibility in learning. For intermediate and advanced levels, or customized training, classes are delivered in person or via video conferencing

6. How long does the training last?

The training is designed to be completed in about half an hour, but with the option to progress at your own pace.

7. Is a certificate issued at the end of the training?

Yes. A training certificate is issued at the end of the course, subject to validation of the modules and, where applicable, the final test. It is recognized by the authorities.

8. Does the training include an assessment of knowledge?

Yes. A final online quiz is included to verify knowledge acquisition and understanding of the requirements of the PART-IS regulation.

9. Is the training suitable for non-technical profiles?

Yes. The training is open to both technical and non-technical profiles. It focuses on understanding the issues, responsibilities, and expected behaviors, with no prerequisites in IT or cybersecurity.

10. Does this training raise awareness among all staff?

Yes. It is an effective tool for raising awareness of aviation cybersecurity and PART-IS regulations, contributing to the information security culture required by EASA. However, some profiles will require intermediate or advanced training depending on their role.

RECOMMENDED ADDITIONAL TRAINING

  •    EASA FH PART-145 SGS/SMS Training

    Why? PART-IS cybersecurity is part of a comprehensive safety management system. Understanding SMS PART-145 allows for better integration of cyber risks into the overall safety management of aviation maintenance.

  •     Formation CRM (Crew Resource Management)

    Communication and human factors in aviation
    Why? Cybersecurity is heavily dependent on the human factor. CRM teaches communication and human error management, essential skills for preventing cyber incidents related to human behavior (phishing, handling errors, etc.).

  •   LOSA Training - Operational Security Audit
    Why? LOSA enables you to audit and identify operational vulnerabilities. These auditing skills can be transferred to identifying cybersecurity flaws in daily operationss.

  •    EASA PART CAMO Training - Continuing Airworthiness Maintenance and management program
    Why? Continuing airworthiness now includes cyber aspects with connected avionics systems. Understanding CAMO helps integrate cybersecurity into continuing airworthiness management.

  •   Formation IATA DGR – Function 7.7 Flight Crew - IATA DGR 

    Why? Computer systems manage the declaration and tracking of dangerous goods. A cyber compromise of these systems poses major risks to aviation safety and regulatory compliance.


  •    MMEL & MEL Training  - Aviation risk management

    Why? Electronic MEL management systems are potential targets for cyberattacks. Understanding MEL allows us to assess the cyber impact on the minimum equipment required for flight.

  •   ETOPS Training - (Extended-range Twin-engine Operational Performance Standards) = Twin-engine long-haul flights over oceans/deserts
    Communication and human factors in aviation
    Why?     ETOPS operations depend on critical avionics and satellite communications systems. Cybersecurity is essential to protect these systems during long-haul flights over oceans.
Write your awesome label here.
VALIDITY

YOUR CERTIFICATE WILL BE VALID WITH THE AUTHORITIES

Our online aeronautical training portal provides courses recognized by aviation authorities such as EASA, DGAC, OSAC and FAA. Your certificate will be accepted by oversight authorities.

Alain François

Aviation Compliance Manager at Aviation Sans Frontières.
Teaches courses at the ESTACA engineering school (ISAE/Sup Aero Group - Paris Saclay, Laval, and Bordeaux campuses) for 4th- and 5th-year engineering students and AERO maintenance master's students, such as:
- FAA/EASA Air Law: PART 145, PART 21 J & G,
- EASA PART CAMO & CAO - Cockpit avionics - Hydraulic systems
- Fuel systems Outsourced Quality & Safety Manager for an EASA PART 145 Certified Maintenance Workshop: Approval No.: EASA FR 145.0305.
External Quality & Safety Assurance Manager for an EASA-certified CAMO G+I (Continuing Airworthiness Management Organization): Approval No. EASA PART M FR.MG.0493.
Support for CAMO G+J certification
Quality Assurance Manager for an RAG 5.3-certified aircraft maintenance workshop in Libreville (Gabon): Approval No. GA.5.3.03.2018 Lead Auditor IAQG (International Aerospace Quality Group)