ACICAE-Euskadi Automotive Cluster together with Derten, an expert in cybersecurity and Information Security Management Systems, would like to invite you to the 1st Workshop ‘Talking about Cybersecurity and Automotive Regulations: Present and Future’, which will take place on Wednesday, April, 2nd, from 10.00h to 11:30h at AIC – Automotive Intelligence Center (Amorebieta-Etxano).
The intensification of the latest cyber attacks is jeopardising the continuity and daily operations of organisations, highlighting the importance of cybersecurity for their survival.
On the other hand, both customers and legislators are closing ranks around regulations and standards, demanding compliance with information security requirements from their supply chain.
During the conference we will show you the steps to take to implement an information security management system and identify information security risks and business continuity.
In addition, we will benefit from the experience derived from the VDA TISAX-compliant implementation process carried out by CIE Automotive.
PROGRAM:
Throughout the day, the phases of implementation of an ISMS and reference certification, objectives, deadlines, project team and necessary dedication, as well as the usual difficulties that organisations encounter in the process, will be presented in a practical way:
- BLOCK I. Situation analysis
- RaaS service model and GRC methodology
- What do customers want to protect when they ask me for this type of certification?
- Why do they ask for it?
- What do I have to take into account?
- BLOCK II. Practical application in my organisation
- Putting things in order: Phases of an NIS2 or VDA TISAX implementation project
- Exposure of the main difficulties and obstacles during the implementation of NIS2 or VDA TISAX.
- Shall we talk about security and continuity roles?
- Maturity levels
- Methodology
- Timeframe for implementation
- Intervening team
- BLOCK III: Decision making… what to do/not to do?
- Decide to comply: Opportunities and benefits
- Decide not to do anything: Infringements and sanctions, non-listing in the market…
- BLOCK IV. Subsidies, satisfaction and personalised attention
- Financial aid for ISMS implementation projects.
- Satisfaction survey of the day.
- Next steps, individual treatment.
- BLOCK V: Success story
- Testimonial of CIE Automotive in the implementation of an ISMS in accordance with the VDA TISAX standard.
SPEAKERS:
Julio Holgado – ISMS Key Account Management at Derten, S.A.
Amaia Chaparro Toledo – Director of the Consultancy Area and Technological Risk Manager at Derten, S.A.
CASE STUDY:
VDA_TISAX: Daniel Huegun, CISO at CIE Automotive
