Software-supported management system for automotive cybersecurity

New regulations and standards such as UN R155 and ISO/SAE 21434 make it compulsory for the automotive industry to practice compliant cybersecurity management. Automotive security specialist ETAS is now offering its PROOF maturity model also as part of the Alyne tool. This means OEMs and suppliers can use the software to help them develop their own security organization further and evaluate their subcontractors.

New regulations such as UN R155 and UN R156, the ISO/SAE 21434 standard, and even the “red editions” published by the German Association of the Automotive Industry (VDA) call for automotive manufacturers and suppliers to implement a cybersecurity management system that includes risk management along the entire supply chain. To this end, ETAS developed its Product Security Organization Framework (PROOF), a maturity model that can be used to systematically measure and optimize vehicle security and all related processes and organizational requirements.

PROOF brings together international and regional automotive security regulations and standards within one framework. In this way, the maturity model enables companies to perform a comprehensive, transparent risk assessment of their own organization and their suppliers. By integrating the model into Alyne governance, risk and compliance software, ETAS is now also offering its customers the opportunity to digitalize risk management and to automate maturity assessments and evaluations. PROOF in Alyne identifies and visualizes any deficits by comparing security maturity with requirements, making it a digital management tool for targeted automotive security along the entire supply chain.