
CREATING A COMMON STANDARD FOR CYBER SAFETY
The standards that govern the automotive industry are designed to ensure high levels of quality, safety and performance throughout the supply chain. Now, as vehicles become ever more inter-connected and driven by technology, automotive suppliers must comply with new standards that target an emerging risk: Cybersecurity.
In May 2018, the Automotive Industry Action Group (AIAG), in collaboration with information security leaders and executives from GM, Ford, FCA and Honda, released a set of minimum cybersecurity guidelines – referred to as Cyber Security 3rd Party Information Security – to be followed by automotive manufacturers. Created in response to the growing complexity of supply chains and information being shared, these guidelines support industry efforts to protect sensitive data by outlining a unified set of cybersecurity requirements for automotive suppliers to follow.
WHAT IT TAKES TO COMPLY
This cyber standard contains General Computing Controls, or minimal security requirements, that apply to all third parties that create, collect, store, transmit, manage or process an OEM’s data outside of the OEM’s environment. These controls are broken into nine chapters according to specific categories, which include access controls, data encryption, vulnerability management, security audits, data retention and disposal and security investigations.
CYBERSECURITY MADE FOR YOU
Automotive suppliers seeking to protect OEMs’ confidential and sensitive information can find help at the Michigan Manufacturing Technology Center. Our cyber experts are prepared to help your company satisfy requirements of AIAG’s standard by completing the following steps:
- Identify Items at Risk. At the beginning of the process, The Center will work to identify OEM-related information that is currently at risk.
- Demonstrate Completion of Assessment. Based on the information identified as being at risk, The Center will assess the current processes and procedures for handling, storing and maintaining this information as it pertains to the Automotive cybersecurity requirements. The resulting “Gap Analysis” helps your company understand which key areas need to be focused on for full compliancy.
- Document and Policy Creation. The Center will assist in generating any documentation and policy information required to prove your current compliancy status.
GET STARTED AT THE CENTER
The time is now for automotive suppliers to safeguard their businesses against cyber-attacks. Contact The Center today at 888.414.6682 or cyber@the-center.org to get started.
ADDITIONAL RESOURCES
Automotive Industry Collaborates on New Cybersecurity Guidelines (source: AIAG)
AIAG's New Cybersecurity Guidelines Publication Has Arrived! (source: AIAG)