intacs^®-certified Automotive SPICE^® for Cybersecurity Model

Extend your Automotive SPICE^® analysis expertise to cybersecurity. Learn how to analyze and assess development processes regarding cybersecurity.

The Automotive SPICE^® for Cybersecurity process assessment model (PAM) provides an extension to Automotive SPICE^® in six additional processes. This training is meant to prepare assessors for the assessment of the processes.

This training introduces the model extension, Automotive SPICE^® for Cybersecurity, and helps prepare participants, who must be intacs^®-certified assessors, to apply the model extension. This training helps participants extend their analysis expertise to cybersecurity and analyze and assess development processes regarding aspects of cybersecurity. The three-day training prepares participants for the exam on the last day.

intacs^®-certified Competent and Principal Assessors who have cybersecurity expertise will be qualified to lead an assessment using Automotive SPICE^® Cybersecurity after passing the training and exam.

内容

The content of this training is based on the syllabus published by intacs^®. intacs^® provides standard training material to training providers. The training will cover the following topics:

• Cybersecurity know-how, including:

  • Cybersecurity motivation and history
  • Cybersecurity goals
  • Relevant standards and guidelines
  • The concept of "assets" and asset management
  • UNECE requirements
  • Risk assessment methods and threat modeling
  • Methods for penetration testing
  • Security vs. Safety
  • TARA according to ISO/SAE 21434

• The processes of the Automotive SPICE^® for Cybersecurity model in detail:

  • ACQ.2, Supplier Request and Selection
  • MAN.7, Cybersecurity Risk Management
  • SEC.1, Cybersecurity Requirements Elicitation
  • Cybersecurity Item and Threat Analysis and Risk Analysis (TARA)
  • SEC.2, Cybersecurity Implementation
  • SEC.3, Risk Treatment Verification
  • SEC.4, Risk Treatment Validation
• Cybersecurity considerations for implementing or assessing existing Automotive SPICE^® 3.1 processes, including:
  • Acquisition processes: ACQ.3, ACQ.4, ACQ.14 and ACQ.1
  • System development processes: SYS.1-SYS.3
  • Software development processes: SWE.1-SWE.3
  • Software test processes: SWE.4-SWE.6
  • System test processes: SYS.4-SYS.5
  • Support processes: SUP.1-SUP.8
  • Project Management: MAN.3
  • Risk Management: MAN.5
• Exercises
• Exam preparation

目标人群

This training is designed for intacs^®-certified Automotive SPICE^® assessors.

综合信息

• Participants who pass the exam will receive a certification of competence. If the participant has a base PAM certification (Process, Expert, Provisional Assessor, Competent Assessor, Principal Assessor), they can get an update assessor card with an HWE mark.
• For online trainings, all materials are offered digitally. For in-person trainings, all materials are offered digitally.