4th Annual Auto-ISAC Cybersecurity Virtual Summit!
An Attack on One is an Attack on All.
“The Auto-ISAC Summit provides a unique experience to learn about automotive cybersecurity information sharing, collaboration, and organization. The Summit fills a gap among automotive cybersecurity workshops and ideally complements more technical workshops such as escar.”
– Summit Attendee
Themes to be Explored in 2020
BUILDING 'A' TEAM
How do you build your “A” team of automotive cybersecurity practitioners? How do you train your staff? How do you find new staff? This session explores the multitude of opportunities to build a robust and vibrant team of automotive cybersecurity specialists that can work together to reduce the risk and impact of a cyber-attack. This session explores not only company- wide best practices but how this may impact global organizations, and how to tap external partners and others to help build that “A” team.
VULNERABILITIES & MITIGATING RISK
Every automotive company must manage vulnerabilities from sourcing to post-production across the full life-cycle of the connected vehicle. Understanding vulnerabilities is one key step companies are taking which must be aligned to an overall strategy of mitigating the business risks from design, to build, to manufacturing and to operations. Where does a company start to define the cybersecurity framework process, understand best practices, utilize standards, outline privacy measures and understand potential regulatory next steps?
COMMUNICATIONS IN AN INFORMATION SHARING ENVIRONMENT
How do you communicate risk to disparate stakeholders? Risk communication is a strategic activity that involves the ability to communicate effectively the nature and magnitude of risks to internal and external stakeholders. Crucial to risk management is not only recognizing the problem, but also communicating the risks to key stakeholders and others who may be impacted. The same applies to the sharing of information in large global networks, and involves different ways of engaging and accommodating internal and external stakeholder interests. Communication skills for persuading different stakeholders, convincing conflicting stakeholder interests, and reaching compromises and satisfaction levels of key stakeholders are fundamental to effective communications in an information sharing environment. The Auto-ISAC only thrives when we are all working together and communicating information that can impact the resiliency of our sector.
How do you determine actionable intelligence in an era of disinformation? In our connected IOT-device driven world, we are bombarded daily with information. How accurate or actionable is that information? Can we quickly turn information into knowledge? Today disinformation can be seen as a form of cyber-attack. Disinformation is the latest weapon in the arsenal of attacks and the speakers will answer these questions:
- How do we combat it using collaboration and tools?
- How do we validate and verify information that we receive is accurate and representative of the truth?
- What tools, tactics, techniques and procedures can we deploy as an industry to mitigate the risks, and build resiliency against disinformation?
Secure Automotive Software Development in the Age of ISO/SAE 21434
Dennis Kengo Oka, Principal Automotive Security Strategist
Modern vehicles run on software containing more than 150 million lines of code. As a result of more advanced safety-relevant functionality, such as ADAS and autonomous driving, as well as new communication interfaces, mobile apps, and back-end servers based on connected car use cases, the need for developing secure systems in the automotive industry is higher than ever. A draft of the new cyber security standard ISO/SAE 21434 was recently released to help automotive companies address cyber security for the entire vehicle life cycle.
This talk presents cyber security activities in the software development process based on ISO/SAE 21434 to help automotive companies develop more secure systems. We’ll provide examples of what is required from a resources and tools perspective to ensure an efficient and practical implementation of the various cyber security steps in the development process.
Supply Chain Transparency Through Digital Twins - The Secret Sauce for Cyber Resilience
Slava Bronfman, CEO, Cybellum
In this 20-minute webinar, we'll address the growing frustration of OEMs and supplies with their complex and practically-invisible software supply chain, how it impacts product security and how the industry can overcome those via Cyber Digital Twins technology. Join this webinar to learn how harmonization, traceability and collaboration drive cyber resilience, including:
- The case for supply-chain transparency in the automotive industry
- What are Cyber Digital Twins?
- How will vehicle development and product security look in the not-so-distant future
Click the button below to view the 2019 event page information.