2nd Annual Auto-ISAC European Cybersecurity Summit
”Sustaining the Present – Securing the Future”
BMW Welt | Munich, Germany
June 11 - 13, 2024*
The Summits are an automotive cybersecurity conference that showcases insights from manufacturers, suppliers, thought leaders, lawmakers, practitioners, and other stakeholders and highlights the commitment of members to trust, share, teach, learn, and act. This year the European Cybersecurity Summit will be held in-person only at BMW Welt in Munich, Germany.
*June 11 is exclusively for Members, but we invite all attendees to join us at the Welcome Reception on that day!
Themes to be Explored in 2024
-
Sustaining the Present – Securing the Future
Driving into the future securely
Embrace innovation, collaboration, and responsible leadership on this journey towards a brighter, more secure future.
-
Threat Landscapes & Risks
Navigating the twisting roads of automotive cybersecurity
Gain insights into emerging cyber threats and vulnerabilities that pose risks to vehicles and connected systems. Dissect the challenges and strategies to mitigate these threats and safeguard the future of automotive technology.
-
Regulations & Standardization
Understand the rules, play strategically
Gain a deep understanding of the regulatory frameworks and industry standards governing cybersecurity practices in the automotive sector. Empower members to navigate compliance requirements effectively and enhance their overall cybersecurity posture.
-
Experience Reports & Future Challenges
Sharing experiences, embrace challenges
Sharing real-world cybersecurity experience reports and future challenges in the automotive sector. Discover firsthand accounts of industry experts tackling evolving threats and navigating complex cybersecurity landscapes.
2024 Agenda
| Tuesday, June 11 – Member’s Only Workshop | |
|---|---|
| 08:00 – 09:00 | Registration & Welcome Coffee |
| 09:00 – 09:15 | Welcome & Introduction Dr. Martin Emele, European Director, Auto-ISAC Europe; Timo van Roermund, Technical Director Automotive Security, NXP, & European Working Group Chair; Sébastien Denis, VSOC Leader, Stellantis & European Working Group Vice Chair |
| 09:15 – 09:45 | What if R. Daneel Olivaw Checks Your Threat Intelligence Findings Instead of You? Dr. Valentina Penso, Connected Vehicle Cybersecurity Specialist, MARELLI & European Steering Committee |
| 09:45 – 10:15 | API Security Challenges Sébastien Denis, VSOC Leader, Stellantis & European Working Group Vice Chair |
| 10:15 – 10:45 | Morning Coffee Break |
| 10:45 – 11:15 | Cybersecurity Information Sharing within the Auto Industry: Current Practices, Challenges, and Recommendations David Abdulmasih, Consulting Manager, SBD Automotive |
| 11:15 – 12:00 | Update on the Common Security Advisory Framework (CSAF) Activities Dr. Dina Truxius, SME, BSI (Federal Office for Information Security); Dirk Targoni, Product Vulnerability and Incident Response Handler, BOSCH |
| 12:00 – 13:30 | Lunch |
| 13:30 – 14:45 | Session 1: Auto-ISAC I&A Team, Products, and Services Overview Josh Poster, I&A Operations Manager; Ricky Brooks, IO; Brandon Sunshine, IA, Auto-ISAC; Peter Venesz, PCIA, Auto-ISAC Europe |
| 13:30 – 14:45 | Session 2: R155 and R156 Experience Report Johann Denissen, Information Security Manager, PACCAR |
| 14:45 – 15:30 | Afternoon Coffee Break |
| 15:30 – 16:30 | Structured Discussion on Products and Intelligence Gaps Josh Poster, I&A Operations Manager; Ricky Brooks, IO; Brandon Sunshine, IA, Auto-ISAC; Peter Venesz, PCIA, Auto-ISAC Europe |
| 16:30 – 17:00 | Hardware Security for In-Vehicle Networks: How it Works, Where it Fails, and What to do About That Dr. Ken Tindell, CTO, JK Energy |
| Tuesday, June 11 – European Cybersecurity Summit | |
| 17:00 – 21:00 | Welcome Reception Hosted by Upstream Security |
| Wednesday, June 12 – Session 1: Sustaining the Present – Securing the Future | |
| 07:00 – 08:00 | Running Club Kickstart your day with an energetic run led by Pen Test Partners, gathering no later than 7:00, in front of the H2 Hotel located at Moosacher Str. 82, 80809 München |
| 08:00 – 09:00 | Registration & Welcome Coffee |
| 09:00 – 09:10 | Welcome & Introduction Dr. Martin Emele, European Director, Auto-ISAC Europe |
| 09:10 – 9:25 | A Message from the Chair Kevin Tierney, VP & Chief Cybersecurity Officer, General Motors & Auto-ISAC Chair |
| 09:25 – 09:30 | Welcome Address from European Steering Committee and Summit Task Force Chairs Dr. Oliver Creighton, Vehicle Cybersecurity Specialist, BMW Group & Board Member and Steering Committee Chair; Michael G. Schneider, Principal Expert Product Cybersecurity and Privacy, Continental & European Summit Task Force Vice Chair |
| 09:30 – 10:15 | Sustaining the Present – Securing the Future Dr. Christoph Grote, SVP Electronics & Software, BMW Group; Martin Arend, General Manager Automotive Security, BMW Group |
| 10:15 – 10:50 | Morning Coffee Break Hosted by Google Cloud |
| 10:50 – 11:00 | Pre-Panel Introduction William Dalton, VP & MD, VicOne |
| 11:00 – 11:30 | Redefining Automotive Cybersecurity: A Life Cycle Strategy for End-to-End Risk Management Moderator: William Dalton, VP & MD, VicOne; John Heldreth, Founder, ASRG; Dr. Cosimo Senni, Global Product Cyber Security Manager, Stellantis, & European Steering Committee Vice Chair; Brian Gorenc, VP of Threat Research, Trend Micro |
| 11:30 – 12:00 | vSOC 3.0: Managing Cyber Risks at Scale Guiseppe Serio, VP Market Development, Upstream Security; Prof. Dr. Hans-Joachim Hof, VP of Technische Hochschule Ingolstadt and Research Professor for Automotive Cybersecurity |
| 12:00 – 13:30 | Lunch |
| Wednesday, June 12 – Session 2: Threat Landscapes & Risks | |
| 13:30 – 14:00 | Vehicle Security Risks: Understanding the Dynamics Inside the Big Picture Lucie Wollenhaupt, Cyber Security Manager; Julian Münster, Manager, Deloitte |
| 14:00 – 14:20 | Cybersecurity Drives Competitiveness – Report from the Automotive Cyber Maturity Survey 2024 Dr. Moritz Minzlaff, Head of Professional Security Services, ETAS GmbH |
| 14:20 – 14:50 | Let’s Talk about Threat Intelligence in a Common Language Using Automotive Threat Matrix (ATM) Josh Poster, I&A Operations Manager, Auto-ISAC; Yuanbo Guo, CEO, Vultara |
| 14:50 – 15:30 | Afternoon Coffee Break |
| 15:30 – 16:00 | Understanding of CVSS 4.0. Improvement and Remaining Challenges for Use in Automotive Dirk Targoni, Product Vulnerability and Incident Response Handler, BOSCH |
| 16:00 – 16:30 | Beyond the V, Extend to Classical V Model with Penetration Testing Prof. Dr. Christoph Krauß, Head of Automotive Security Research, INCYDE; Stefan Marksteiner, Senior Technology Scout Cyber Security, AVL |
| 16:30 – 17:00 | Everything Everywhere all at Once – Towards an Integrated Product Security Management for Software-Defined Vehicles Dirk Leopold, EVP Digital Engineering, itemis |
| 17:00 – 18:00 | Champagne Hour Hosted by itemis AG |
| 18:00 – 21:00 | Dinner Reception |
| Thursday, June 13 – Session 3: Regulation & Standardization | |
| 07:00 – 08:00 | Running Club Kickstart your day with an energetic run led by Pen Test Partners, gathering no later than 7:00, in front of the H2 Hotel located at Moosacher Str. 82, 80809 München |
| 08:00 – 09:00 | Morning Coffee |
| 09:00 – 09:30 | The Cyber Resilience Act: The EU’s First Comprehensive Product Security Legislation Benjamin Bögel, Head of Sector for Product Security and Certification Policy, European Commission, DG CNECT |
| 09:30 – 10:00 | ENISA Threat Landscape: Update on Threats to Transport Rossen Naydenov, Officer in Network and Information Security, ENISA |
| 10:00 – 10:30 | Panel on Regulation Moderator: Markus Tschersich, Head of Security and Privacy Research and Governance, Continental; Benjamin Bögel, European Commission, DG CNECT; Lukasz Rozanski, European Commission, DG GROW; Rossen Naydenov, ENISA; Heide Kuhrau, Security Responsible, BMW Group; Claudia Dorn, Manager EU Vehicle Cyber Security Applications, Ford; Dr. Marko Wolf, Product Cybersecurity Governance, BOSCH |
| 10:30 – 11:00 | Morning Coffee Break |
| 11:00 – 11:30 | BSI Keynote & Collaboration Dr. Arndt von Twickel, Head of Division "Cybersecurity for Intelligent Transport Systems and Industry 4.0", BSI (Federal Office for Information Security) |
| 11:30 – 12:00 | Cybersecurity Assurance Levels and Targeted Attack Feasibility – An Update on ISO/SAE PAS 8475 Paul Wooderson, Chief Engineer - Cybersecurity, HORIBA MIRA |
| 12:00 – 13:30 | Lunch |
| Thursday, June 13 – Session 4: Experience Reports & Future Challenges | |
| 13:30 – 14:00 | Our Way to Approach the CSMS Elephant Joachim Bozler, Senior Security Expert, Daimler Truck |
| 14:00 – 14:30 | NIS2 Directive Impacts on Automotive Industry Regarding Existing Cybersecurity Regulations and Standards Patrick Faye, Cybersecurity Department Manager, UTAC |
| 14:30 – 15:00 | Futureproofing the Backend: Thoughts on Managing and Protecting the Connected Vehicle Ecosystem Tom Molden, CIO, Sales – Global Executive Engagement, Tanium |
| 15:00 – 15:30 | Afternoon Coffee Break |
| 15:30 – 16:00 | Navigating the Future: The Intersection of AI and Automotive Cybersecurity Dr. Sheikh Mahbub Habib, Head of Cybersecurity and Privacy Innovation, Continental |
| 16:00 – 16:30 | Panel Session on Current Challenges in Automotive Security Engineering Alexandre Berthold, Senior Expert - Automotive Cyber Security, Volkswagen (Intro statement); Moderator: Michael G. Schneider, Continental; Dr. Dominik Fisch, Incident Manager, BMW Group; Johann Denissen, Information Security Manager, PACCAR; Dr. Robert Kaster, Chief Technical Expert, BOSCH & Auto-ISAC Board Member |
| 16:30 – 17:00 | Merging Mixed-Criticality Functions in System-on-Chips (“Fusion”): The Security Issues and the Urgent Need for Harmonizing Security Practices Frédéric Ameye; Redouane Soum, Cybersecurity Architects, Ampere (Renault Group) |
| 17:00 – 17:15 | Closing Remarks Dr. Martin Emele, European Director, Auto-ISAC Europe; Faye Francy, Executive Director, Auto-ISAC |
| 17:00 – 19:00 | Closing Reception |
