Hi All,
Please find attached the Weekly Automotive Industry Report covering April 3April 8. Auto-ISAC Overview This week’s report includes articles on: Toyota partnering with Microsoft on a new cloud-based division led by the CIO, IntelJune acquiring 4, 2021 a semiconductor manufacturer that builds chips for self-driving cars, Hyundai unveiling its connected vehicle “roadmap,” and, Toyota planning to open a new autonomous vehicle research center in Michigan.
YouFaye can Francy find past reports on site. Executive Director Please let me know if you have any questions. Have a great weekend.
This document is Auto-ISAC Sensitive and Confidential. Josh This document is Auto-ISAC Sensitive and Confidential. 13 May 2021 1 Cyber threats and the business Cybersecurity Challenge
Connectivity creates the potential The business impact of a for fleet-wide attacks affecting cyber attack is real
• Remote control or manipulation Endangerment of customers Safety • Spoofing vehicle sensors Damage to brand and • Disruption of vehicle network reputation • Disruption or interference of Undermining trust in services Quality connectivity and autonomy • Manipulation of performance and diagnostics Exposure to costly litigation Costly remediation needed to • PII breach address issues and liabilities Privacy • Payment information leak • Tracking / eavesdropping Disruption to your business
Cybersecurity is a business risk
This document is Auto-ISAC Sensitive and Confidential. 13 May 2021 2 Why an ISAC? Background Information Sharing and Analysis Center (ISAC)
Organizations must act …one company’s detection is individually to manage another company’s prevention cyber risk…
Identify emerging threats and vulnerabilities earlier Protect Detect Pool limited resources to better fight your adaptive adversary Share incident intelligence to act more quickly Respond Enhance Proactively shape industry-wide best practices Protect overall trust in innovation Internal External across the industry Investment Investment Build resiliency across industry
This document is Auto-ISAC Sensitive and Confidential. 13 May 2021 3 Auto ISAC – Who We Are
RE-EVALUATION OF STRATEGY Who We Are & & MISSION Why We Are Here
MISSION: To strengthen the global automotive industry against cyber threats and enhance cyber attack resilience and response. An attack on one is an attack on all.
Timely Sharing of Building Developing Ensuring & Maturing Threat & Vulnerability Strong Effective Consistent Cyber Information Relationships Response Plans Capability
Each Member is expected to: Trust, Share, Teach, Learn, Act
We are a technical organization, serving membership by end enabling cyber learning and capability development. As members, we are expected to both share and learn, and continue to strengthen capabilities to protect our customers. We will hold ourselves accountable.
This document is Auto-ISAC Sensitive and Confidential. 13 May 2021 4 2021 BoD/AB Leadership 2021 Board of Directors Executive Committee (ExCom)
Kevin Tierney Josh Davis Jenny Gilger Tim Geiger Todd Lawless Chair of the Vice Chair of the Secretary of the Treasurer of the Chair of the Board of the Directors Board of the Directors Board of the Directors Board of the Directors Advisory Board GM Toyota Honda Ford Continental
2021 Advisory Board (AB) Leadership
Todd Lawless Michael Feiri Chris Lupini Larry Hilkene Chair of the Vice Chair of the Chair of the SAG Chair of the CAG Advisory Board Advisory Board Aptiv Cummins Continental ZF
This document is Auto-ISAC Sensitive and Confidential. TLP:AMBER 13 May 2021 5 Member Roster Member Roster as of May 1, 2021 Highlighted = Change Aisin Hyundai NXP Allison Transmission Infineon Oshkosh Corp Aptiv Intel PACCAR Argo AI, LLC John Deere Electronic Panasonic AT&T Kia Polaris Blackberry Limited Knorr Bremse Qualcomm BMW Group Lear Renesas Electronics Borg Warner (Delphi) LGE Subaru Bosch (Escrypt-Affiliate) Luminar Sumitomo Electric Continental Magna Tokai Rika Cummins MARELLI Toyota Denso Mazda TuSimple FCA/Stellantis Mercedes-Benz Valeo Ford Meritor Veoneer Garrett Mitsubishi Motors Volkswagen General Motors Mitsubishi Electric Volvo Cars Geotab Mobis Volvo Group Google Motional Waymo Harman Navistar Yamaha Motors Hitachi Nexteer Automotive Corp ZF Honda Nissan 62 Members
This document is Auto-ISAC Sensitive and Confidential. 13 May 2021 6 Auto ISAC – Value Streams
RE-EVALUATION OF STRATEGY Defined & MISSION Value Streams
INFO SHARING & EDUCATION RELATIONSHIPS VALUE AWARENESS enable effective industry ensure industry STREAMS avoid or reduce impact response & resilience, readiness of cybersecurity events, and demonstrates growing into automotive commitment to relevant IT & OT space stakeholders
GLOBAL SCOPE DOMAIN SCOPE BPSC -> ETSC SHIFT FOCUS FROM BEST PRACTICE CREATION TO EST RACTICE GLOBAL TASK FORCE BUILDING AUTOMOTIVE RELEVANT IT & OT B P MATERIAL SUSTAINABLE OPERATING PLAN FOR INFORMATION IN SCOPE. MEMBERS EDUCATION & TRAINING / EUROPEAN REGION AND SUPPORT TO WORKING TO DETERMINE HOW TO ADD & EVENTS. ENSURE MEMBERSHIP JAPAN AUTO-ISAC. EXTRACT VALUE FROM THESE DOMAINS. CAPABILITY IS DEVELOPING BROADLY.
This document is Auto-ISAC Sensitive and Confidential. 13 May 2021 7 Auto-ISAC Collaboration & Learning Environment Collaboration
Exercises-Drills / Analytic Products / Assessments . Executive C-suite Tabletop . Analyst Drills – Exercise . Legal Exercise Quarterly Workshops . Analyst Working Group . Webinars – Members / Partners Committees . Advise the Board | Recommendations . Management-driven . Members-Teaching-Members Working Groups . Summit & Global Task Forces . Delivering Member value Summits . Sharing - Members, Partners / Community
This document is Auto-ISAC Sensitive and Confidential. 13 May 2021 8 Auto ISAC – Measuring Success
ROLES, RESPONSIBILITIES Measuring & METRICS Success
VALUE STREAMS & PERFORMANCE INDICATORS
Top Line Goal: Zero safety-related cyber events in the industry
INFO SHARING & EDUCATION RELATIONSHIPS AWARENESS % Participation % Taking Educational % Member Satisfaction Sharing / Platform / Offerings with value added Attendance Maturity Surveys relationships
Bottom Line Goal: Maintain healthy finances and engagement
This document is Auto-ISAC Sensitive and Confidential. 13 May 2021 9 Member benefits Benefits
WHAT YOU GET WHY IT MATTERS Find and fix issues faster Services Time is money, especially in cyber. Members receive verified, timely cyber Real-time Intelligence Sharing threat, vulnerability, and remediation info. Validation and Context Maintain a trusted brand Crisis Notifications Customers demand safety and privacy. OEMs demand secure components from Intelligence Summaries suppliers. Joining the ISAC demonstrates a commitment to protecting vehicles, Best Practices services and, ultimately, drivers. Member Contact Directory Stay ahead of regulation Exchanges / Workshops Uniting on the cyber challenge, and maintaining clear channels with global Webinars and Presentations government bodies, helps inform and Community Calls shape legislation. Enhance capabilities Tabletop Exercises Our community is a trusted forum to Annual Summit Event share insights and learn from one another. Formal activities —like exercises and workshops—and informal relationship-building cultivate this trust.
This document is Auto-ISAC Sensitive and Confidential. 13 May 2021 10 Thank you!
hank you!
ThisThis document document isis Auto-ISAC-ISAC Sensitive Sensitive and Confidential. and Confidential. 5 March 2021 48 48 Contact
Faye Francy Executive Director
20 F Street Northwest Suite 700 Washington, DC 20001 703-861-5417 [email protected]
http://www.automotiveisac.com
This document is Auto-ISAC Sensitive and Confidential. 13 May 2021 12