Cybersecurity audit and assessments in Automotive
Learn relevant documents to conduct audit and assessments in the automotive industry.
All along the automotive value chain, audits and assessments play an important role in determining what is the status quo of the implementation of cybersecurity. In this video course, you will learn all about audits and assessments in general, and also get a first overview of documents such as ISO/PAS 5112 and A-SPICE for cybersecurity that support audits and assessments.
Ensuring compliance and cybersecurity with audits and assessments is a topic for the entire automotive value chain
For all organizations involved in vehicle manufacturing, whether at OEM level or Tier-N supplier level, fulfilling the ISO/SAE 21434 demands and providing evidence of achieved cybersecurity is a major topic. In this video course “Cybersecurity Audits and Assessments”, you will find comprehensive information regarding audits and assessments.
To introduce the topic of audits and assessments, we will first go over the costly consequences of neglecting compliance to ISO/SAE 21434 and explain the different aspects and scope between audits and assessments.
In the following section, you will get a deeper understanding on what an audit is, as well as about important factors to successfully audit organization processes. Additionally, you will get a first overview on how the ISO PAS 5112 and VDA QMC Automotive Cybersecurity Management System Audit can support on performing audits in your organization and across contractual partners. Since the UN Regulation No. 155 requires the establishment of a Cybersecurity Management System along the value chain, this information is relevant not only for OEMs (who are ultimately responsible), but also for suppliers involved in vehicle manufacturing.
On the second part of the video course, you will learn what cybersecurity assessments include, what you should consider to ensure an assessment is properly performed, and recommended approaches as to when you should perform cybersecurity assessments depending on your capabilities and product. You will also learn about the Automotive SPICE assessment, as the relevant assessment tool for the vehicle industry.
Finally, you will be provided with an overview of the most important standards and guidelines for cybersecurity audits and assessments in the automotive context.
Learn more about relevant audits and assessments for OEMs and suppliers with the world’s first ISO/SAE 21434:2021 Workbook – officially licensed by ISO
The CYRES Consulting ISO/SAE 21434 Pocket Guide and The Essential Guide to ISO/SAE 21434 are followed by the now released ISO/SAE 21434:2021 Workbook, The new publication is designed to simplify practical work with the most important automotive cybersecurity standard and is the first ISO/SAE 21434:2021 Workbook. It will include:
- all work products (and corresponding requirements, recommendations and permissions) of ISO/SAE 21434:2021 (“First Edition”) – officially licensed by ISO
- Field-tested templates for key work products, such as TARA, Cybersecurity Plan, Item Definition, CIA, and more
- Expert interviews, background information, explanations with a practical perspective across the automotive value chain
The workbook is ready for ordering here and is available worldwide as a digital workbook (ebook / PDF).
Who Automotive cybersecurity audit and assessments video course is made for:
Quality assurance managers
It does not come as a surprise, as complying with ISO/SAE 21434 is the new quality dimension in automotive industry. Therefore, being aware of relevant audits and assessments is crucial to ensure a level of compliance to ISO/SAE 21434 is achieved.
Project managers
Test and project managers greatly benefit from this video course as audits and assessments can be performed during the development phase and help determine compliance to ISO/SAE 21434 already from early stages and ensures corrections are made on time.
Automotive Cybersecurity Audits and Assessments – Video course content
Here you will get an overview of learning objectives why this video course is important for you as an automotive cybersecurity professional.
II. Importance of complying to ISO/SAE 21434 and noncompliance consequences
Understand the importance of complying to ISO/SAE 21434 and UN Regulation No. 155 and the costly consequences of failing to do so.
III. Audits and assessments in automotive according to ISO/SAE 21434
Learn the difference between audits and assessments and their different scopes in a side to side comparison.
Get a clear explanation on what audits according to ISO/SAE 21434 must cover, when you should perform it, and how the ISO PAS 5112 can provide guidance for auditing your company along the ISO/SAE 21434.
V. Cybersecurity assessment
Similar to the previous section, you will also learn more deeply about cybersecurity assessments in automotive, when you should perform them, and more importantly, how the ASPICE Assessment for cybersecurity and the VDA QMC ACSMS can support you.
VI. Summary and Outro
Recap on the most important lessons learned in the last 11 minutes.
More video courses related to Automotive Cybersecurity Audits and Assessments
Cybersecurity Requirements for Post-Development In Vehicles
Cybersecurity requirements for post-development are demanded by UN R155 and ISO/SAE 21434:2021. Learn the main considerations in this video course.
Production Control Plan for Cybersecurity in Vehicle Manufacturing
Know what the pre-requirements and specific contents of the Production Control Plan are. Learn about this major work product with this video course.
Release for Post-Development Report
Learn about the release for post development report as a work product for ISO/SAE 21434:2021 and UN Regulation No. 155. Watch video course.
Communication and Stakeholder Management
In this video course, you will learn about how to approach communication and stakeholder management in vehicle cybersecurity as required by ISO/SAE 21434:2021.
Cybersecurity Monitoring and Event Evaluation
Understand what cybersecurity monitoring and event evaluation is based in the cybersecurity continual activities framework. Watch video course.
Product Security Incident Response Team (PSIRT) Overview
In this video course, you will learn exactly all the Product Security Incident Response Team or PSIRT service areas, their purpose, and contents.
Cybersecurity Incident Response Plan
Learn what a cybersecurity incident response plan is and what it should contain to comply with ISO/SAE 21434 in this video course.
Vulnerability Analysis for Vehicle Cybersecurity
Learn what is the cybersecurity vulnerability analysis in continual cybersecurity activities and as required by the ISO/SAE 21434. Also, learn how to correctly decide a course of action to treat a vulnerability.
Cybersecurity Case as ISO/SAE 21434 Work Product
Learn how to create a cybersecurity case, which is a work product of ISO/SAE 21434. In this video course, you will also get lessons learned from real projects.
Supplier Selection Process in Automotive
Learn about the supplier selection process in automotive and which cybersecurity capabilities should be followed to comply with ISO/SAE 21434 and other automotive cybersecurity standards and regulations.
Cybersecurity Interface Agreement as required ISO/SAE 21434 work product
Learn how to build the structure of the Cybersecurity Interface Agreement as required by ISO/SAE 21434. Template incl. in this 7 min video course.
What is a cybersecurity plan in automotive and how it is structured
Learn what is a cybersecurity plan in automotive and what aspects are required by ISO/SAE 21434 in this short video course and sample plan.
Tool Management according to ISO/SAE 21434
Understand why tool management is crucial and what is required from the ISO/SAE 21434 standpoint, while taking ISO 26262 as a base to define the tool management methods.
Managing Cybersecurity at Organizational Level Summary
Get an overview on managing cybersecurity at the organizational level as for ISO/SAE 21434 and required work products. Watch video course.
Cybersecurity Audits and Assessments in Automotive
Learn more about automotive cybersecurity audits and assessments in this video course. Get a glimpse on how ISO/PAS 5112, ASPICE, VDA QMC ACSMS can support you to audit and assess along the ISO/SAE 21434 and UN R155.
Competence Management in Vehicle Cybersecurity
Learn how competence management according to ISO/SAE 21434 can be achieved and recognize the negative consequences of ignoring it.
Cybersecurity Policy Rules and Processes
The cybersecurity policy is a requirement for ISO/SAE 21434 and UN Regulation No 155. Learn about it on this video course.
Cybersecurity Culture in Automotive
Building cybersecurity culture is a requirement for ISO/SAE 21434 and an important component that benefits organizations.
Understanding the Impact of Cybersecurity in Project Lifecycle
Learn how to manage and plan cybersecurity in the project lifecycle and understand the possible negative consequences if ignored.
Distributed Development In Automotive
Learn how distributed development enables successful projects in automotive and meet ISO/SAE 21434 expectations.
The Importance of Including Cybersecurity in Project Management Activities
In this video you will learn how important is to include Cybersecurity in Project Management activities to ensure project success.
