Information SecurityEuropean Union
EASA Part-IS — Information Security in Aviation
EASA (European Union Aviation Safety Agency) Part-IS (Information Security) regulations establish information security requirements for aviation organizations under the EASA regulatory framework. Part-IS requires organizations to establish an Information Security Management System (ISMS) to protect aviation safety from information security threats.
Domains
Part-IS.AR: Authority Requirements
Part-IS.I.OR: Organisation Requirements (Implementing Regulation EU 2023/203)
Part-IS.D.OR: Organisation Requirements (Delegated Regulation EU 2022/1645)
Compare EASA Part-IS — Information Security in Aviation
EASA Part-IS — Information Security in Aviation vs ISO 27001:2022View comparison →EASA Part-IS — Information Security in Aviation vs SOC 2View comparison →EASA Part-IS — Information Security in Aviation vs NIST CSF 2.0View comparison →EASA Part-IS — Information Security in Aviation vs GDPRView comparison →EASA Part-IS — Information Security in Aviation vs HIPAAView comparison →EASA Part-IS — Information Security in Aviation vs PCI DSS 4.0View comparison →
EASA Part-IS — Information Security in Aviation by Industry
EASA Part-IS — Information Security in Aviation for Healthcare→EASA Part-IS — Information Security in Aviation for Financial Services→EASA Part-IS — Information Security in Aviation for Technology→EASA Part-IS — Information Security in Aviation for Government→EASA Part-IS — Information Security in Aviation for Manufacturing→EASA Part-IS — Information Security in Aviation for Energy→EASA Part-IS — Information Security in Aviation for Retail→EASA Part-IS — Information Security in Aviation for Education→
EASA Part-IS — Information Security in Aviation by Role
EASA Part-IS — Information Security in Aviation for CISOs→EASA Part-IS — Information Security in Aviation for Compliance Officers→EASA Part-IS — Information Security in Aviation for Risk Managers→EASA Part-IS — Information Security in Aviation for IT Directors→EASA Part-IS — Information Security in Aviation for DPOs→EASA Part-IS — Information Security in Aviation for Auditors→
Frequently Asked Questions
What is EASA Part-IS?
EASA (European Union Aviation Safety Agency) Part-IS (Information Security) regulations establish information security requirements for aviation organizations under the EASA regulatory framework. Part-IS requires organizations to establish an Information Security Management System (ISMS) to protect aviation safety from information security threats.
How many controls does EASA Part-IS have?
EASA Part-IS contains 18 controls organized across 3 domains.
Where does EASA Part-IS apply?
EASA Part-IS is applicable in European Union. Organizations operating in or serving customers in this jurisdiction should evaluate its requirements.
What frameworks does EASA Part-IS map to?
EASA Part-IS has control-to-control mappings with 470 other compliance frameworks in our database. Use our compliance platform to explore these mappings interactively.
How do I get started with EASA Part-IS compliance?
Start by understanding the framework's key controls and domains. Our compliance platform provides AI-powered gap analysis and mapping tools to help you assess your current posture and build a remediation plan.
How ready are you for EASA Part-IS — Information Security in Aviation?
Answer 25 questions and get a professional readiness report with gap analysis, maturity scores, and prioritised action items. Results in 5 minutes.