I-001
CHF 1,350.00
Management of Information Security Risks according to (EU) 2022/1645 Part-IS
By the end of this two-day course, personnel involved in the safety of civil aviation activities at their organization shall be able to efficiently contribute to the protection of the aviation system from Information Security (IS) risks, event, incidents and their consequences.
Part-IS introduces requirements for the identification and management of IS risks that could affect information and communication technology systems and data used for civil aviation purposes: the detection of IS events, identifying those which are considered IS incidents, the response and recovery from those IS incidents to a level commensurate with their impact on aviation safety.
To organize an in-house or distance training at your chosen date/location, please submit an enquiry or contact us at train@qcm.ch.
Accountable Managers, Quality Managers, Compliance Managers, Compliance Monitoring Managers, Nominated Personnel, Safety Managers, and C-Level Executives.
All personnel working within an organization involved in: Production and design (Part-21), Continuing airworthiness management (CAMO/Part-CAMO), Maintenance (Part-145), Air operators (Part-ORO), Aircrew aero-medical centres (Part ORA), Air traffic controller training (ATCO TOs) and ATCO aero medical (Part ATCO.OR), organizations subject to ATM/ANS.OR, Approved training organizations, Flight simulation training device (FSTD) operators, Aerodrome operators and apron management service providers, or U-space service providers and single common information service providers.
None
By the end of this two-day course, personnel involved in the safety of civil aviation activities at their organization shall be able to efficiently contribute to the protection of the aviation system from Information Security (IS) risks, event, incidents and their consequences.
Part-IS introduces requirements for the identification and management of IS risks that could affect information and communication technology systems and data used for civil aviation purposes: the detection of IS events, identifying those which are considered IS incidents, the response and recovery from those IS incidents to a level commensurate with their impact on aviation safety.
The course aims to fulfil the following pedagogical objectives:
- To get familiar with IS security risks
- To define how to manage the risks with their potential impact
- To identify and detect the risks and the tasks of a Safety & Quality Systems
Day 1
- context and scope
- risks threats and vulnerabilities
- I.S management system (ISMS)
- I.S risks assessment
Day 2
- I.S risks treatment
- I.S incident management & contracting
- personnel & records keeping
- ISMM & ISMS changes
Delegated Regulation (EU) 2022/1645
Implementing Regulation (EU) 2023/203 Part-I