If you like to know more about ASRG, look at our quick introduction at https://youtu.be/SYbv_B45PCI, visit our webpage at https://www.asrg.io or contact us directly.
PRESENTATION:
“The impression that a Cybersecurity, respectively Info Security Manager, shall be an expert in each area, is pervasive in many organizations.
This presentation is meant to illustrate, with practical examples, from day-to-day engineering life, 5 Cybersecurity and 5 Functional Safety activities and how a Manager and an Expert should approach them.
What a manager should know about hardware safety analysis and what key questions to ask? What about Software testing?
What should a safety manager understand from a testing report and how could this, for instance, impact on hardware sample release?
What about penetration testing? Can they be executed by external companies, what are the associated risks, in that case?
Why is important to have senior management approval for them, and what could go wrong if executed without approval?
Which types of assets are suitable for black, gray or white box pen testing? What should be this decision based on?
Which data type should be encrypted, in an organization? How can this decision be based on data classification?
Does it really make sense to use always strongest encryption type? (e.g. AES-256)
PRESENTER:
Bogdan Gradinaru | Head of Cybersecurity, clockworkX
Head of Cybersecurity and Senior Functional Safety Consultant
- Functional Safety
More than 7 years of experience
General - IEC 61508 / Automotive ISO 26262 / Machinery - ISO 13849 / Railway - EN50128
Coaching and Training
Performing Audits & Assessment
- Cybersecurity
Audits - ISMS / Organizational Cybersecurity ISO 270xx
Automotive Cybersecurity Management – ISO/DIS 21434
Organized 2 previous ASRG presentations:
- Automotive Cybersecurity for engineers with a functional safety background
- Safety Integrity vs Cybersecurity assurance levels
PRESENTATION SLIDES:
https://garage.asrg.io/webinars/how-to-think-like-a-security-and-a-safety-manager/
PRESENTATION:
“The impression that a Cybersecurity, respectively Info Security Manager, shall be an expert in each area, is pervasive in many organizations.
This presentation is meant to illustrate, with practical examples, from day-to-day engineering life, 5 Cybersecurity and 5 Functional Safety activities and how a Manager and an Expert should approach them.
What a manager should know about hardware safety analysis and what key questions to ask? What about Software testing?
What should a safety manager understand from a testing report and how could this, for instance, impact on hardware sample release?
What about penetration testing? Can they be executed by external companies, what are the associated risks, in that case?
Why is important to have senior management approval for them, and what could go wrong if executed without approval?
Which types of assets are suitable for black, gray or white box pen testing? What should be this decision based on?
Which data type should be encrypted, in an organization? How can this decision be based on data classification?
Does it really make sense to use always strongest encryption type? (e.g. AES-256)
PRESENTER:
Bogdan Gradinaru | Head of Cybersecurity, clockworkX
Head of Cybersecurity and Senior Functional Safety Consultant
- Functional Safety
More than 7 years of experience
General - IEC 61508 / Automotive ISO 26262 / Machinery - ISO 13849 / Railway - EN50128
Coaching and Training
Performing Audits & Assessment
- Cybersecurity
Audits - ISMS / Organizational Cybersecurity ISO 270xx
Automotive Cybersecurity Management – ISO/DIS 21434
Organized 2 previous ASRG presentations:
- Automotive Cybersecurity for engineers with a functional safety background
- Safety Integrity vs Cybersecurity assurance levels
PRESENTATION SLIDES:
https://garage.asrg.io/webinars/how-to-think-like-a-security-and-a-safety-manager/
- Category
- Management
![](https://management-club.com/en/video/templates/apollo/img/pm-avatar.png)
Be the first to comment