Academy of Information Security in Civil Aviation
Description: After completing the course, participants will be able to demonstrate the following competences:
- Implement and manage ISMS documentation and processes in civil aviation.
- Conduct risk analysis and compliance assessments based on PART-IS requirements.
- Plan and perform internal audits for aviation-specific information security systems.
- Prepare and manage response to information security incidents and business continuity scenarios.
- Coordinate with aviation authorities and demonstrate regulatory compliance.
- Lead information security initiatives within aviation organizations.
Previous skills/knowledge: Participants are expected to have the following basic knowledge:
- General understanding of information and cybersecurity principles.
- Familiarity with aviation processes and operational structure.
- Basic knowledge of risk and compliance concepts in regulated sectors.
Authorized Partners:
Teaching requirements: Trainers should meet the following requirements:
- Subject Matter Expertise: Advanced knowledge of ISO/IEC 27001:2022 and ISO 19011, with experience in change control, nonconformity management, and continual improvement processes.
- Certifications – Recommended credentials include ISO/IEC 27001 Lead Auditor or Implementer, with practical experience in ISMS improvement cycles and corrective action systems.
- Training & Practical Experience: At least 2–3 years of hands-on experience managing ISMS changes, internal audits, and improvement planning in civil aviation or other regulated industries.
Objectives to achieve: This program is intended to train professionals in the implementation and evaluation of information security in civil aviation according to PART-IS and ISO standards:
- Develop a comprehensive understanding of PART-IS information security obligations and ISO/IEC 27001, ISO/IEC 27005 and ISO/IEC 27035 standards,
- Enable structured implementation of ISMS controls, audits, risk assessments, and incident response procedures in civil aviation,
- Build the ability to manage ISMS documentation lifecycle, regulatory communication, and organizational improvement,
- Strengthen operational readiness for audits, inspections, and post-incident recovery,
- Train professionals to lead information security coordination roles aligned with PART-IS and EU regulatory requirements.
