EASA Part-IS Intro Training – For Aircraft & Component Maintenance Organisations

Course Objectives:

This course provides a general understanding of the regulatory framework and implementation strategies for Information Security Management Systems (ISMS) in aviation organizations, as mandated by Part-IS regulations.

Participants will gain insights into the purpose, applicability, structure, and integration of ISMS with existing Safety Management Systems (SMS). The Targeted Audience for this course is focussed on Accountable Manager and Compliance & Safety Managers or any other staff member in an EASA Part-145 approved Aircraft of Component Maintenance organisation, requiring general awareness on Part-IS and the essence of implementing an Information Security Management Systems (ISMS).

Learning objectives:

After completion of this course, the students will:

• Understand the purpose and main goals of Part-IS regulations.
• Identify the organizations to which Part-IS is applicable.
• Comprehend the structure of Part-IS and its relationship with SMS.
• Implement ISMS within their organizations, including developing an ISMS Manual.
• Conduct information security risk assessments and manage information security incidents.

Regulatory requirement compliance:

This course has as regulatory basis (EU) No 1321/2014 on Continuing Airworthiness – Latest Revision – which also incorporates the latest ammendments.

Prerequisites:

• Basic understanding of aviation operations and existing safety management systems.
• Familiarity with information security principles is beneficial but not mandatory.
• Proficiency in English for technical and regulatory materials.

Course Topics:

PART 1 – INFORMATION SECURITY MANAGEMENT SYSTEM (ISMS) – INTRODUCTION

• Definition and objectives of ISMS.
• Key components and principles of ISMS.
• Relationship EASA Part-145 and ISMS.

PART 2 – PURPOSE OF PART-IS

• Purpose and main goals of Part-IS.
• Structure of Part-IS regulations.

PART 3 – ORGANISATIONS REQUIRED TO COMPLY WITH PART-IS

• Applicability of Part-IS to Different Aviation Organizations
• Exemptions and Derogations Under Part-IS

PART 4 – RELATIONSHIP PART-IS AND SAFETY MANAGEMENT SYSTEM (SMS)

• Integration of ISMS with existing SMS and other management systems.
• Preventing Information Security Threats from Becoming Safety Hazards.
• Reporting and Incident Management in SMS and ISMS

PART 5 – IMPLEMENTING ISMS

• ISMS Manual Requirements
• Information Security Risk Assessment
• Information Security Risk Treatment
• Managing Information Security Incidents and Continuous Improvement
• Ensuring compliance with overlapping regulatory frameworks

Course Duration:

This Advanced E-training courses takes about 2 – 3 hrs to complete.

Materials Used

Required Materials:

The latest version of eRules consolidated Regulation Part-IS: Commission Implementing Regulation (EU) 2023/203 (Download here) and Commission Delegated Regulation 2022/1645 (Download here).

Supplemental Materials:

A notebook and pen if you require to make notes.

Hardware and Software Requirements

Hardware requirements:

A reliable computer with a stable internet connection is necessary to complete the course and/or online examination.

Software requirements:

There is no software deemed necessary for this training.

Browser information:

We recommend that you use Google Chrome during the course and online examination.

Instructor & Training Material Author Information

Instructor & Training Material Author credentials:

Mr. Danny Goergen is a highly experienced aviation professional with over two decades of expertise spanning aircraft maintenance, regulatory compliance, quality assurance, training, and consultancy. His career has been defined by a commitment to excellence in safety, operational efficiency, and industry best practices.

Starting as an aircraft mechanic, Danny honed his technical skills before earning a Bachelor of Science in Aviation Engineering. He then transitioned into process engineering at an EASA Part 145 approved component repair shop, where he played a pivotal role in optimizing maintenance operations. Over the years, he has held multiple EASA Form 4 positions, including Technical Manager and Quality Assurance Manager, demonstrating his ability to lead and uphold rigorous industry standards.

In 2009, Danny founded Holland Aviation Consultancy & Engineering (HACE), a firm dedicated to providing expert consultancy, audit support, and training services to the aviation maintenance sector. Through HACE, he has developed an online training platform offering courses in Human Factors, EWIS, Fuel Tank Safety, and aviation regulations, ensuring that professionals worldwide have access to high-quality, industry-relevant education.

Danny’s extensive experience includes quality management roles in EASA Part 145 maintenance organisations, Part 147 training centers, and Aircraft Part-Out and Aviation Supplier organisations. As a lead auditor and compliance expert, he has been instrumental in ensuring organizations meet and exceed regulatory requirements. His work with MROs, training organisations, and aerospace firms has positioned him as a trusted advisor in regulatory compliance, safety management, and continuous improvement.

Beyond consultancy, Danny is a qualified and experienced auditor and has provided internal audit support for numerous organizations, such as APOC, Chromalloy, EPCOR, Fokker Services Group, Intelsat and Viba Aerospace & Defense. His expertise covers not only EASA, FAA, and CAAC regulations, but also ISO-9001, EN/AS9120, ASA-100 and AFRA BMP standards, allowing him to navigate complex international compliance landscapes effectively.

As a respected trainer and mentor, Danny has conducted numorous classroom and online training sessions for aviation professionals, equipping them with the knowledge and skills to uphold the highest industry standards. His ability to translate regulatory requirements and aviation standards into practical, actionable strategies makes him a valuable asset to any aviation organization.

With a passion for aviation safety and continuous improvement, Danny Goergen remains dedicated to supporting the industry’s evolving needs through expert consultancy, quality management, and training solutions.

Contact information:

Mr. Danny Goergen can be contacted via e-mail (danny.goergen@hace.aero) or tefephone +31(0)28183203

Linked-in: https://www.linkedin.com/in/dannygoergen/

Assessment and Grading

Testing procedure:

Students will perform an online examination with Multiple-choice questions. A laptop or tablet with WiFi internet connection is needed to complete this examination.

Grading procedure:

All lessons need to be marked completed and the online examination needs to be passed with a minimum passrate of 75% in order to receive a Certificate of Course Completion.

Assignments and Participation

Assignments and Projects:

There are no assignments or projects applicable for this online course.

Course Ground Rules

Course Participation & Expectations

To ensure a smooth and effective learning experience in this self-paced course, students are expected to:

• Engage with course materials actively and complete all required activities.
• Utilize available resources, including instructor support (if applicable), FAQs, and discussion forums.
• Stay updated on course announcements and guidelines.
• Use the designated student email for any course-related communication.
• Address any technical issues promptly to avoid disruptions.
• Follow proper online etiquette (netiquette) in all interactions within the learning platform.

By following these guidelines, students can maximize their learning experience and successfully complete the course