benefit from the knowledge of our community and allies
Industry Resources
-
ACEA (European Automobile Manufacturers' Association
The European Automobile Manufacturers’ Association, or ACEA, unites Europe’s 16 major car, truck, van and bus makers. Together, we are progressing on the road to zero-emission and zero-fatality transport. We are addressing major technology shifts and the changing mobility needs of Europeans.
-
Atlantic Council
In cyberspace, adversaries are growing more sophisticated and outpacing advancements in policy, education, and defense technologies. In an era of great-power competition, it is vital that policy makers and tech experts understand the underlying factors and motivations impacting the field of cybersecurity. With a focus on strategy and foresight, the Atlantic Council shifts attention from singular incidents to better understand larger cyber campaigns.
-
Automotive Safety Council
The trade association of the leading Autonomous, Crash Avoidance and Occupant Protection automotive safety suppliers. The Council speaks for the industry, representing its interests and presenting its views on any and all national and international levels.
-
Automotive Security Research Group (ASRG)
The Automotive Security Research Group (ASRG) is a non-profit initiative to promote the development of security solutions for automotive products.
https://asrg.io -
BSI
The BSI is the federal cyber security agency and the chief architect of secure digitalisation in Germany. Our objective is the secure use of information and communication technology in government, business and society. We provide support for information security, allowing it to be understood as a prerequisite for digitisation and implemented independently. We want to ensure that security aspects are considered right from the development of IT systems and applications: information security and digitisation are inseparable.
-
Charter of Trust
Charter of Trust is a non-profit alliance of leading global companies and organizations from various sectors, based on 10 principles, working together to make the digital world of tomorrow a safer place. CoT aims to shape cybersecurity worldwide via three important objectives: Protect the data of individuals and companies; Prevent damage to people, companies and infrastructures; and Create a reliable foundation on which confidence in a networked, digital world can take root and grow.
-
The Cybersecurity and Infrastructure Security Agency (CISA) – Resources
The Cybersecurity and Infrastructure Security Agency offers a range of cybersecurity assessments that evaluate operational resilience, cybersecurity practices, organizational management of external dependencies, and other key elements of a robust and resilient cyber framework. These professional, no-cost assessments are provided upon request on a voluntary basis and can help any organization with managing risk and strengthening the cybersecurity of our Nation’s critical infrastructure.
-
CISA Central + Vulnerability Reporting
CISA Central is CISA’s hub for staying on top of threats and emerging risks to our nation’s critical infrastructure, whether they’re of cyber, communications or physical origin. Through CISA Central, CISA coordinates situational awareness and response to national cyber, communications, and physical incidents. CISA works closely with public, private sector, and international partners, offering technical assistance, information security and education to protect our nation’s critical infrastructure from a broad range of current cyber, communication, and physical threats.
Submit vulnerability for coordinated disclosure:
https://www.cisa.gov/reportUpload to the Vulnerability Information and Coordination Environment (VINCE)
https://www.kb.cert.org/vuls/report/ -
CISA Cross Sector Cybersecurity Performance Goals
The CPGs are a prioritized subset of IT and operational technology (OT) cybersecurity practices that critical infrastructure owners and operators can implement to meaningfully reduce the likelihood and impact of known risks and adversary techniques.
-
CLEPA
CLEPA represents over 3,000 companies supplying state-of-the-art components and innovative technology for safe, smart and sustainable mobility, investing over €30 billion yearly in research and development.
-
Cyber.org
CYBER.ORG’s goal is to empower educators as they prepare the next generation to succeed in the cyber workforce of tomorrow.
-
Cyber Bytes Foundation
The Cyber Bytes Foundation 501(c)(3) mission is to establish and sustain a unique cyber ecosystem to produce the education, innovation, and outreach programs to enhance developers and the cyber workforce.
The Cyber Bytes Academy (CBA) provides cutting-edge education and programs to many global students.
The American Cyber League (ACL) offers technology experts, equipment, and training for collaborative use by government, nonprofits, businesses, colleges, and universities to accelerate the implementation of advanced cyber technologies.
The Quantico Cyber Hub (QCH) is designed as an agnostic “Cyber Domain Ecosystem”.
-
Cyber Future Foundation (CFF)
Cyber Future Foundation was established to create a brighter and trusted future for cyberspace where digital commerce and innovation can thrive based on trust and respect to individual privacy. CFF’s mission is to provide a collaborative platform for industry, public agencies, academia and civil society towards building a more trusted and secure cyber space at a global level.
-
Cyber Readiness Institute (CRI)
The Cyber Readiness Institute (CRI) brings together the expertise of senior executive leaders at global companies – including Mastercard, Microsoft, ExxonMobil, Principal Financial Group, General Motors, PSP Partners, and the Center for Global Enterprise – to develop free resources to improve the cyber readiness of small and medium-sized enterprises to secure global value chains.
-
CyberSeek
To help close the cybersecurity skills gap, CyberSeek provides detailed, actionable data about supply and demand in the cybersecurity job market.
-
Cyber Threat Alliance
The Cyber Threat Alliance (CTA) is an independent, non-profit membership organization focused on cybersecurity providers. Private sector members are cybersecurity companies from around the world focused on every element of the ecosystem. Partners include Computer Emergency Response Teams (CERTs), Information Sharing and Analysis Centers (ISACs), peer non-profits and other organizations not eligible for CTA Membership.
-
DoD-Defense Industrial Base (DIB) Collaborative Information Sharing Environment (DCISE)
DoD-Defense Industrial Base Collaborative Information Sharing Environment (DCISE)—DCISE is the operational hub of DoD’s Defense Industrial Base (DIB) Cybersecurity Program, focused on protecting intellectual property and safeguarding DoD content residing on or transiting through, contractor unclassified networks. The public-private cybersecurity partnership provides: a collaborative environment for crowd-sourced threat sharing at both unclassified and classified levels, Cleared Defense Contractor (CDC) cyber resilience analyses, and Cybersecurity-as-a-Service pilot offerings.
https://www.dc3.mil/Organizations/DIB-Cybersecurity/DIB-Cybersecurity-DCISE/
-
European Union Agency for Cybersecurity (ENISA)
The European Union Agency for Cybersecurity, ENISA, is the Union’s agency dedicated to achieving a high common level of cybersecurity across Europe. Established in 2004 and strengthened by the EU Cybersecurity Act, the European Union Agency for Cybersecurity contributes to EU cyber policy, enhances the trustworthiness of ICT products, services and processes with cybersecurity certification schemes, cooperates with Member States and EU bodies, and helps Europe prepare for the cyber challenges of tomorrow.
https://www.enisa.europa.eu/ -
FBI Internet Complaint Center IC3
The IC3 accepts online Internet crime complaints from either the actual victim or from a third party to the complainant. You may file a complaint with the IC3 if you believe you have been the victim of an Internet crime or if you want to file on behalf of another person you believe has been such a victim.
-
FIRST (Forum of Incident Response and Security Teams)
FIRST brings together a variety of computer security incident response teams from government, commercial, and educational organizations. FIRST aims to foster cooperation and coordination in incident prevention, to stimulate rapid reaction to incidents, and to promote information sharing among members and the community at large.
-
FIRST PSIRT Services Framework
The Services Frameworks are high level documents detailing possible services that computer incident response teams (CSIRTs) and product incident response teams (PSIRTs) may provide. The Frameworks exist to assist organizations in building, maintaining, and growing capabilities of their CSIRTs or PSIRTs.
https://www.first.org/standards/frameworks/psirts/psirt_services_framework_v1.1
-
Global Cyber Alliance
The Global Cyber Alliance (GCA) builds practical, measurable solutions and tools that are easy to use, and works with partners to accelerate adoption around the world.
https://www.globalcyberalliance.org/
A free, three week training series for small businesses, co-hosted by the Global Cyber Alliance and the Cyber Readiness Institute. Cyber Readiness Program covers four core focus areas: Authentication, Software Updates, Phishing and USBs/Removable Media. CRI Starter Kit provides some helpful tips and tricks without signing up to the program.
https://gcatoolkit.org/cyber-basics-for-small-businesses-training/
-
GCA: IoT Policy and Attack Report
This is the first issue of the GCA Internet Integrity Papers series, which shows the results of an IoT Policy and Attack research project conducted jointly by the Global Cyber Alliance (GCA) and Microsoft.
https://www.globalcyberalliance.org/reports_publications/iot-policy-and-attack-report/
-
GlobalPlatform Automotive Initiative
GlobalPlatform has launched an automotive initiative to foster direct engagement between trusted digital service experts from banking, government and mobile industries and the full Automotive Value Chain to optimise the efficient deployment of Secure Components, Trusted Digital Architecture, Security APIs, and Security Lifecycle Management within the Automotive sector.
https://globalplatform.org/task-forces/automotive-task-force/ -
Global Resilience Foundation (GRF)
GRF, with nearly 20 years of experience, is a nonprofit provider and hub for cyber, supply chain, physical and geopolitical threat intelligence exchange between information sharing and analysis centers (ISACs), organizations (ISAOs) and computer emergency readiness/response teams (CERTs) from many different sectors and regions around the world. Its mission is to help assure the resilience of industries and organizations against threats to their ability to provide services critical to the global economy.
-
Infragard
InfraGard is a partnership between the Federal Bureau of Investigation (FBI) and members of the private sector for the protection of U.S. Critical Infrastructure. Through seamless collaboration, InfraGard connects owners and operators within critical infrastructure to the FBI, to provide education, information sharing, networking, and workshops on emerging technologies and threats. InfraGard’s membership includes: business executives, entrepreneurs, lawyers, security personnel, military and government officials, IT professionals, academia and state and local law enforcement—all dedicated to contributing industry-specific insight and advancing national security.
-
National Council of ISACs
Sector-based Information Sharing and Analysis Centers collaborate with each other via the National Council of ISACs. Formed in 2003, the NCI today comprises 27 organizations. It is a coordinating body designed to maximize information flow across the private sector critical infrastructures and with government. Critical infrastructure sectors and subsectors that do not have ISACs are invited to contact the NCI to learn how they can participate in NCI activities.
-
The National Cyber Security Alliance (NCSA)
The National Cyber Security Alliance (NCSA) builds strong public/private partnerships to create and implement broad-reaching education and awareness efforts to empower users at home, work and school with the information they need to keep themselves, their organizations, their systems and their sensitive information safe and secure online and encourage a culture of cybersecurity.
-
The National Initiative for Cybersecurity Education (NICE)
The National Initiative for Cybersecurity Education (NICE), led by the National Institute of Standards and Technology (NIST) in the U.S. Department of Commerce, is a partnership between government, academia, and the private sector focused on cybersecurity education, training, and workforce development.
https://www.nist.gov/itl/applied-cybersecurity/nice/resources
-
NIST - Automotive Cybersecurity Community of Interest (COI)
NIST is setting up this community of interest (COI) to allow the industry, academia, and government to discuss, comment, and provide input on the potential work that NIST is doing which will affect the automotive industry.
-
National Security Agency (NSA)
NSA leverages its elite technical capability to develop advisories and mitigations on evolving cybersecurity threats.
https://www.nsa.gov/Press-Room/Cybersecurity-Advisories-Guidance/
-
SHIELD Automotive Cybersecurity Centre of Excellence
Automotive Cybersecurity Centre of Excellence is dedicated to the advancement and development of security solutions for the automotive sector. The Centre is the first and only of its kind, with the goal of ensuring vehicles of tomorrow are safe and secure. The Centre is hosted at the University of Windsor, in the Windsor-Essex region, the Automobility Center of Canada. With a great focus on Automotive Cyber Security, the Centre’s aim is to facilitate Canadian-made solutions in training, innovation, and public awareness.
-
STOP. THINK. CONNECT.
STOP. THINK. CONNECT.™ is the global online safety awareness campaign to help all digital citizens stay safer and more secure online. The message was created by an unprecedented coalition of private companies, non-profits and government organizations with leadership provided by the National Cyber Security Alliance (NCSA) and the APWG.
-
U.S. Chamber of Commerce: Security and Resilience
Economic security and national security go together hand-in-hand. Protecting our physical and digital assets as well as our public health are vital to the security of everything—our people, our products, and our businesses. The U.S. Chamber understands that ensuring the safety of all Americans while promoting the free flow of commerce is what drives our economy and enriches our society.