Part-IS Familiarization and Cybersecurity Essentials

Overview

A familiarization and cybersecurity-awareness course on EASA Part-IS for staff across information-security-regulated aviation organisations (Part-145, CAMO, air operators and others). Covers why Part-IS exists, the two regulations and scope, the C·I·A·A pillars and core definitions, all fourteen IS.I.OR rule points, the threat landscape and attack vectors, real documented aviation incidents, and the personal security habits and reporting duties that meet the rule on the shop floor.

Course content is maintained against the latest applicable regulatory amendments reviewed as of 21 June 2026.

Syllabus

16 modules, completed in order — each with its keywords and objective.

1. 1

   Welcome & course scope

   scopeaudienceassessment

   Objective: Orient to the Part-IS course scope and assessment.

2. 2

   Why Part-IS exists — the safety connection

   information securitysafety connectionrationale

   Objective: Explain why Part-IS exists and its connection to aviation safety.

3. 3

   Two regulations, one framework

   2022/16452023/203scopeapplicability

   Objective: Distinguish the two Part-IS regulations and their scope.

4. 4

   The vocabulary — definitions and the chain

   definitionsinformation security eventincidentchain

   Objective: Define the Part-IS vocabulary and the event-to-incident chain.

5. 5

   The four pillars — C·I·A·A

   confidentialityintegrityavailabilityauthenticity

   Objective: Explain the C·I·A·A pillars of information security.

6. 6

   The ISMS and the rule map — IS.I.OR.100 to 260

   ISMSIS.I.ORrule maprequirements

   Objective: Navigate the ISMS rule map from IS.I.OR.100 to 260.

7. 7

   Risk assessment and treatment — IS.I.OR.205 and 210

   risk assessmenttreatmentIS.I.OR.205IS.I.OR.210

   Objective: Apply information-security risk assessment and treatment.

8. 8

   Detection, response and recovery — IS.I.OR.220

   detectionresponserecoveryIS.I.OR.220

   Objective: Describe the detection, response and recovery requirements.

9. 9

   Reporting — the internal scheme and the external clock

   internal reportingexternal reportingdeadlinesscheme

   Objective: Apply the internal reporting scheme and external reporting timelines.

10. 10

    People, contracting, records and improvement

    personnelcontractingrecordscontinuous improvement

    Objective: Explain the people, contracting, records and improvement duties.

11. 11

    Who is the threat?

    threat actorsinsidersmotivationcapability

    Objective: Identify who the information-security threats are.

12. 12

    How organisations get hacked — the six doors

    attack vectorsphishingcredentialsthe six doors

    Objective: Recognise the common ways organisations are compromised.

13. 13

    The attacks by name — and aviation's real incidents

    ransomwarephishingsupply chainaviation incidents

    Objective: Name the major attack types and learn from real aviation incidents.

14. 14

    Could this be you? Three Monday-morning scenarios

    scenariosawarenessapplicationdecisions

    Objective: Apply security awareness to realistic workplace scenarios.

15. 15

    On the shop floor — what you actually do differently

    habitspasswordsUSBreportingshop floor

    Objective: Adopt the personal security habits the rule requires on the shop floor.

16. 16

    Course summary & personal checklist

    summarypersonal checklistself-check

    Objective: Consolidate learning with a personal information-security checklist.

Final assessment

• Format: 12 multiple-choice questions drawn from the course question bank, with the options shuffled each attempt.
• Pass mark: 75%.
• Certificate: issued automatically on passing, according to Regulations (EU) 2022/1645 and (EU) 2023/203 — EASA Easy Access Rules for Information Security (December 2025 revision).