Magility Cyber Security Academy
Immerse yourself in the world of Security and Functional Safety! Alongside our experienced trainers and high quality trainings, you’ll be thoroughly prepared for your company, your products, and your professional career. Our flexible learning formats at the MCS ACADEMY and customized Automotive Cybersecurity, Functional Safety and Automotive SPICE® Trainings offer comprehensive education and practical training that will undoubtedly propel you forward.
In our Trainings, discover how to confront the increasing threats, hazards, and risks. Learn to comprehensively understand the latest standards and best practices to protect vehicles from hacker attacks. Get familiar with state of the art functional safety development principles fulfilling latest standards. Learn to understand and efficiently implement Automotive SPICE® method specifications. Qualify, for instance, as an “Automotive Cybersecurity Engineer,” through our cooperation with TÜV Nord, and enhance your career prospects. Make your products safe & secure!
Thanks to the extensive experience of our trainers, our training courses are characterized by high practical relevance with numerous examples for appropriate, suitable, and secure implementation of requirements. Our trainings focus on the objectives and practical implementation of standards and take place in small groups.
Secure Your Future: MCS Academy for the Automotive Industry
General Information
– The seminar overview indicates which courses are held in German and which ones in English.
– The training material is entirely in English, the language of the standards.
– The training sessions include detailed slides for reading and are also intended for further studies.
– Our courses have a maximum of 12 participants.
– This ensures that the understanding of the material taught and exercises are at a high level.
– The courses are enhanced with accompanying question rounds and exercises to assess learning outcomes.
– Each participant receives a certificate for successful completion.
Our Promise
– We adapt to your situation.
– Our training courses are offered publicly and in-house within companies.
– We employ only high qualified trainers.
– We guarantee practical training sessions.
– Online and on-site, to meet individual needs.
– Time, scheduling, and content for in-house seminars can be tailored to your specific requirements.
– Please share your objectives with us so we can work out with you a suitable offer.
Contact
Magility Cyber Security
Phone: +49 7024 977 8996
contact@magility-mcs.com
Overview of the MCS Academy offer with current Cybersecurity, Functional Safety, and Automotive Spice® Seminars
As long as our Early Bird bird is chirping, you book at the Early Bird price. If the bird is no longer there, the standard price applies. The current price will automatically adjust in the ‘Fee’ field.
When the green checkmark appears, it means the minimum number of participants for the seminar has been reached, and the seminar is guaranteed to take place.
Automotive Cybersecurity Trainings
Introduction to Automotive Cybersecurity (2 days)
Information Security and Automotive Cybersecurity Awareness for Beginners and Users
Train your understanding of information security and automotive cybersecurity! Our seminar offers you the opportunity to gain an understanding of information security aspects in general and product cybersecurity in the automotive sector in particular. During the training you will learn to identify and assess risks and specify measures for dealing with them. Many examples and case studies will enable you to apply security controls in everyday life and to react preventively and proactively to possible threats. Both in terms of information security as well as cybersecurity and its peripheral domains. Join us and become a competent user in the field of information security and automotive cybersecurity! Get to know the thoughts of attackers.
Highlights
- Understanding boundaries, interfaces and differences to neighboring risk-based domains such as functional safety, Sotif or privacy
- Get an overview of relevant standards, norms and regulations that will help you in your day-to-day work
- Be able to carry out initial risk assessments and threat analyses
- Understand the objectives and mindset of hackers
Objectives and Contents
- Get familiar in dealing with methods, terms and definitions of information security and cybersecurity
- Threat analysis and risk assessment methods
- Risk-based approach, types of risks, management systems,
- Different aspects of security: product, IT, information, process, physical security
- Characteristics of cybersecurity
- Get an overview of current standards/guidelines and norms
- Objectives/focus/interfaces/content/interactions
- Which standards are relevant in which phase of the life cycle?
- What characterizes security and hackers?
Target Group
- Everybody who is dealing with cyber/security already or in the future
- All kind of Stakeholders which have to take care about cybersecurity
Automotive Cybersecurity Trainings
Automotive Cybersecurity Engineer (3 days +)
3-day training plus optional letter of qualification TÜV NORD (exam)
Basis: Standard ISO/SAE 21434 and UNECE reg. [155]/ reg. [156]
This course, which the MCS Academy offers in cooperation with TÜV Nord, provides you with detailed knowledge on how to develop cybersecurity requirements in the automotive environment in compliance with the standards. It includes the automotive security standard ISO/SAE 21434, the homologation requirements of the UNECE (United Nations Economic Commission for Europe) covering the requirements for CSMS and SUMS and references to functional safety (ISO 26262) as well as the security add-on to Automotive SPICE®.
Highlights
- Using many practical examples, you will learn to familiarize yourself with and understand the complex topic of automotive cybersecurity
- Comprehensive workshop on conducting a TARA in accordance with ISO/SAE 21434
- Gain the skills to efficiently implement standards and regulations
- Quiz accompanying the training to prepare for the exam
- Provision of a TARA tool and a TARA process description
Objectives and Content
In the qualification course you will:
- Gain an understanding of the ISO/SAE 21434 security standard.
- Acquire in-depth knowledge of regulations, requirements and key deliverables in connection with the standard.
- Understand the background to the various standards and grasp their significance.
- Deepen and apply your knowledge through practical exercises.
- Understand the requirements set by UNECE WP.29 reg. [155] and [156] for homologation.
- Learn methods to achieve your cybersecurity goals.
Target Group
The Cybersecurity Engineer (Automotive) training is specifiically for
- all stakeholders who want/need to apply the ISO/SAE 21434 standard (engineers, project managers, department heads, management system managers, purchasing, legal, …)
- people with basic cybersecurity knowledge who are interested in gaining a deeper insight into the topic of automotive cybersecurity
- those who want to prove their knowledge through a letter of qualification from TÜV NORD
Your Qualification
After completing the training, you will have the opportunity to take part in a TÜV examination. This examination is conducted under the supervision of TÜV Nord. Upon successful completion of the exam, you will receive a Letter of Qualification from TÜV Nord confirming your qualification as a Cybersecurity Engineer (Automotive).
Automotive Cybersecurity Trainings
TARA Intensive (1 day)
Practical workshop TARA for automotive cybersecurity users in the project
Conducting threat analysis and risk assessment is central to automotive cybersecurity and at the core of any security standard. In this training you will learn how to perform your first Threat Analysis and Risk Assessment (TARA). We from the MCS Academy will familiarize you with the concept of risk assessment according to Clause 15 of the international standard ISO/SAE 21434 While the standard only specifies the necessary “WHAT” steps, we will provide you with a systematic step-by-step field-tested “HOW” method.
Highlights
- Participants create an initial TARA together
- Participants receive the MCS TARA tool with the initial TARA created during the training, as well as a corresponding risk assessment process
- Many examples, pitfalls and tips from the field
- References to further supporting sources of information for practical suitability beyond ISO/SAE 21434
- Learn how TARAs can fit together at different levels in the supply chain
Objectives and Contents
- In-depth knowledge of the risk assessment method according to Clause 15 of ISO/SAE 21434 and the risk-based approach to threat analysis.
- Acquire the ability to evaluate different categories of impact for damage scenarios and assess the feasibility of an attack.
- Asset taxonomy for the selection of relevant assets.
- Determination of the treatment of risks (risk treatment).
- Exploring the ability to use other methods and additional external sources beside the standard.
- Explore other guidelines and additional sources of information, including ENISA UNECE, MS STRIDE and others.
- Applying Clause 15 to benefit from the Threat Analysis and Risk Assessment (TARA) in the concept phase (Clause 9).
- Review the mandatory UNECE Annex 5 threat/vulnerability and mitigation tables.
- Familiarize yourself with a detailed TARA tool provided as part of the course.
- Conduct a case study on the step-by-step application of this tool.
- Learn how to facilitate a TARA session using our MCS tool.
- Learn the risk assessment process to be documented for evidence in assessments.
Target Group
This training is aimed at employees who:
- need to carry out Threat Analysis and Risk Assessment (TARA) independently in their development projects.
- would like to instruct their colleagues on how to carry out regular risk analyses.
- will be responsible for cybersecurity tasks in the future.
Recommended Reading:
The New Cybersecurity Challenges and Demands for Automotive Organisations and Projects – An Insight View; Springer: https://link.springer.com/chapter/10.1007/978-3-031-42307-9_21
Automotive SPICE®
Introduction Automotive SPICE® and add-on Cybersecurity (2 days)
2-day training to get familiar with motivation, processes, implementation in practice of the Automotive SPICE© and Automotive SPICE© for Cybersecurity Framewor
Basis: Standards Automotive SPICE© 4.0 and Automotive SPICE© for Cybersecurity
This course will bring light into the numerous terms and definitions from Automotive SPICE©, their meaning and application in practice.
The basic principles behind the process reference model, measurement framework and process assessment model will be explained.
Highlights
- Exercise to create an own process and related base practices
- Preparation for Assesses (which questions could you expect?)
- Using many practical examples, you will learn to familiarize yourself with and understand the topic of a process framework.
- Capability levels and process attributes will be explained in detail.
- Understanding of base practices using numerous practical examples
- Walkthrough of all processes of the new Automotive SPICE® 4.0 PAM.
Objectives and Contents
After participating in the course, you will…
- gain an understanding of the Automotive SPICE® framework capturing all process groups.
- gain an understanding of the impact in case of an Automotive SPICE® Cybersecurity Assessment.
- understand the background and objectives of base practices.
- understand the rating scheme and meaning of different levels.
- be able to start improvement projects in your organization.
- be equipped to actively contribute to assessments as an informed assessee.
Target Group
The Automotive SPICE® and add-on Cybersecurity training is aimed at:
- all stakeholders who want/need to apply the Automotive SPICE® and add-on Cybersecurity in their organization (engineers, project managers, department heads, management system, quality responsible, …)
- People with basic engineering knowledge who are interested in delving deeper within only 2 days into the topic of Automotive SPICE®.
AGENDA
Functional Safety Trainings
Introduction to the principles of Functional Safety (2 days)
Basic knowledge for Users and Beginners
Although the topic of functional safety has been known for some time (IEC 61508; first ISO 26262:2011 in automotive), it is still new for many companies:
- Products receive an ASIL due to a changed environment.
- Principles are discussed again and again in the company, functional safety has not yet fully “arrived”.
The training teaches basic principles: what holds functional safety together internally? Based on the experiences and implementations gained in many real customer projects through collaboration, assessments, audits, etc., we will go through the topic of functional safety.
Highlights
- Standard-independent communication of the most important principles of functional security
- Developing the principles interactively in the group
- Numerous examples how functional safety “thinks”
- Easy access to the ISO 26262 series
Objectives and content
- Increase awareness and get familiar with main important functional safety principles (standard independent)
- Get familiar with purpose and main content of safety standards:
- Focusing on ISO 26262: Road vehicles — Functional safety
- numerous samples mainly taken from ISO 26262. Road vehicles – functional Safety
- Brief insight into “neighboring” standards
- ISO 13849: Safety of machinery — Safety-related parts of control systems
- ISO 25119: Tractors and machinery for agriculture and forestry — Safety-related parts of control systems
- Get an overview of ISO 26262 series and important topics of functional safety within automotive
- Be able to implement safety principles in your own project
- Be able to create your own safety documents
- Knowledge of interfaces to other project activities and their safety-specific tasks
Target Group
- Everybody who will get in touch with functional safety principles during development
- All kind of stakeholders which have to take care about functional safety in the future
- No basics about functional safety have to be known upfront
- Persons who have always wanted to know how functional safety works but were afraid to ask
Our Experts
Training Team
Discover our highly qualified training team, bringing many years of expertise to the table. Our trainers are not only renowned authors and conference speakers, but also active members in various committees and boards e.g. ISO DIN AK 11/ intacs® Advisory Board/ intacs® WG CyberSecurity SPICE/ ZVEI and others.
With extensive experience in key areas such as cybersecurity, functional safety, and information security, they assist OEMs and suppliers in implementing challenging projects in different roles such as trainers, assessors, certified lead auditors for management systems, and consultants. From training hundreds of cybersecurity engineers to supporting the implementation of compliance measures such as CSMS according to ISO/PAS 5112 – our team is here to provide proven expertise. Explore why our trainers are the top choice for companies in the automotive industry seeking premier training and consultancy services.
Our Trainers
- have been among the first in the market to train more than 750 cybersecurity engineers for the automotive industry since 2020.
- have supported OEMs and suppliers in implementing more than 40 TARAs since 2019.
- have been working as functional safety auditors for an average of over 15 years.
- have been involved in various roles in numerous projects related to functional safety and cybersecurity for OEMs and Tier suppliers for many years.
- were among the first in the market to audit CSMS according to ISO/PAS 5112.
- Since 2020, more than 10 CSMS have been set up for clients.
- have long-term experience in various roles and areas: Cybersecurity Manager, Cybersecurity Engineer, Information Security Officer, Data Protection Officer, Automotive SPICE® Auditor and Assessor, Cybersecurity Assessor (ISO/SAE 21434; ISO/PAS 5112) and are highly experienced in assessments, audits, SOTIF and more.
Participation and Data Privacy
Booking and Participation Conditions
The participation fee for training sessions at Magility Cyber Security includes conference materials and refreshments with snacks during onsite trainings at our seminar rooms, as well as lunch. You will receive the conference materials in digital format. Upon receipt of your registration, you will receive a confirmation.
The services will be invoiced one week before the seminar.
Payment Terms
The participation fee is subject to the applicable value-added tax and is due immediately upon receipt of the invoice. Early booking and volume discounts as well as other discounts will be applied directly upon invoicing. In case of late payment, default interest will be charged in accordance with the then-current legal regulations.
Examination fees from third-party providers such as TÜV Nord are collected on their behalf. Discounting on these fees is not possible.
Cancellation Policy
For registrations, cancellation is free of charge up to 6 weeks before the event date, thereafter the following amounts are due:
- 6 to 4 weeks before the start of the event = 20% of the participation fee
- 4 weeks to 7 days before the start of the event = 50% of the participation fee
- 7 days or less before the event date, we will charge the full participation fee.
We are happy to accept a substitute participant at no additional cost.
The organizer reserves the right to make program changes in urgent cases. If the number of participants is too low, we also reserve the right to cancel the seminar. In this case, your participation will be canceled, and you will receive a discount on a subsequent seminar. If a seminar is marked with “Guaranteed Date,” the minimum number of participants has been reached and the seminar will take place as scheduled.
Storage of Your Data
Your personal data will be processed by Magility Cyber Security for the organization and conducting of the event. If you participate in an examination with a third-party provider such as TÜV Nord, we will transfer the necessary data to the respective provider. By booking the seminar, you agree to this.
Your Contact to MCS
We’re pleased that you would like to get in touch with us. Please use the form below to send us your inquiries, feedback, or suggestions. We aim to respond to you promptly and assist you to the best of our abilities.
We are more than happy to engage in a personal exchange with you. We look forward to your inquiry!