a. CONTENTS
The content of this training is based on the syllabus published by intacs™.
- Cybersecurity know-how, including
- Cybersecurity motivation and history
- Cybersecurity goals
- Relevant standards and guidelines
- The concept of "assets" and asset management
- UNECE requirements
- Risk assessment methods and threat modelling
- Methods for penetration testing
- Security vs. Safety
- TARA according to ISO/SAE 21434 - The processes of the Automotive SPICE® for Cybersecurity model in detail
- ACQ.2 Supplier Request and Selection
- MAN.7 Cybersecurity Risk Management
- SEC.1 Cybersecurity Requirements Elicitation
- Cybersecurity "Item" and TARA
- SEC.2 Cybersecurity Implementation
- SEC.3 Risk Treatment Verification
- SEC.4 Risk Treatment Validation - Cybersecurity hints and comments that must be considered when implementing or assessing existing Automotive SPICE® 3.1 processes, including
- Acquisition processes ACQ.3, ACQ.4, ACQ.14, ACQ.15
- System development processes SYS.1 to SYS.3
- Software development processes SWE.1 to SWE.3
- Software test processes SWE.4 to SWE.6
- System test processes SYS.4 and SYS.5
- Support processes SUP.1 and SUP.8
- MAN.3 Project Management
- MAN.5 Risk Management - The course consist of various exercises and sharing experience exchange with participants.
b. TARGET AUDIENCE
For the time being, this training is only intended for intacs™ -certified Automotive SPICE ® Assessors.
.jpg)
.jpg){kind=small}
.jpg)