Log in
E-mail
Password
Remember
Forgot password ?
Become a member for free
Sign up
Sign up
Settings
Settings
Dynamic quotes 
OFFON

MarketScreener Homepage  >  News  >  Companies  >  All News

News : Companies
Latest NewsCompaniesMarketsEconomy & ForexCommoditiesInterest RatesBusiness LeadersFinance ProfessionalsCalendarSectors

Automotive Industry Collaborates on New Cybersecurity Guidelines

share with twitter share with LinkedIn share with facebook
share via e-mail
0
05/02/2018 | 10:47am EDT

SOUTHFIELD, Mich., May 02, 2018 (GLOBE NEWSWIRE) -- In today’s increasingly technology driven and connected world, protecting data is more challenging – and more critical – than ever before. In recognition of this, and in response to the rising number of cybersecurity threats to the supply chain, the Automotive Industry Action Group (AIAG) today announced the release of the Cyber Security 3rd Party Information Security publication – cybersecurity guidelines for automotive trading partners.  

The initial idea behind the document came from an OEM approaching AIAG, and discussing the growing vulnerability of both transactional and proprietary information being shared by trading partners throughout the global supply chain. The OEM suggested that, by bringing the issue to AIAG and engaging other automakers, the industry could work toward a unified set of information security expectations. As a result, the document was created at AIAG with information security leaders and executives from GM, Ford, FCA and Honda, and socialized with their counterparts from Toyota, Nissan, Caterpillar, Bosch, Continental and Magna.

“Over the course of the past 25 years we have seen a remarkable shift in enterprise value from tangible to intangible assets. Data is the new currency.  As such, more effective command and control of data has become an enterprise risk management priority,” says J. Scot Sharland, executive director of AIAG.

While each OEM may require additional measures be taken to ensure information security, this newly developed document outlines minimum guidelines for the secure exchange of information for supplier partners who collect, process, manage, access or store OEM data outside of the OEM’s computing environment.

By implementing these guidelines, suppliers – particularly those working with multiple OEMs– will be able to focus on complying with a single, unified set of expectations, instead of having to meet different (and potentially conflicting) guidelines for information security. OEMs, in turn, will benefit from knowing that their supplier partners are helping protect confidential and sensitive data.

The information security strategies included in the publication are based on industry best practices and standards – specifically ISO 27002 and/or 27002:2013, NIST 800:53 and NIST 800:171. In fact, the National Institute of Standards and Technology (NIST) was actually involved in the document’s creation; in addition to bringing “lessons learned” from their own experiences to the table, NIST helped facilitate the process of benchmarking one of their suppliers in the defense industry as well.

The General Computing Controls addressed in the guideline document are organized into nine chapters according to specific categories. Examples include access controls, data encryption, vulnerability management, security audits of suppliers/Third Parties, data retention and disposal and security investigations, among others. Controls related to software, service or electronic hardware components that reside in the vehicle or interact with a Telematics/Infotainment system that communicates between the back office and vehicle are beyond the publication’s scope.  

“Regrettably, we have already witnessed, first-hand, the devastating and disruptive effects of ‘commercial cyber terrorism’ in our supply chain,” Sharland concludes. “AIAG is harnessing the collective strength of our eclectic membership – OEMs, suppliers of all sizes, service providers, government and academia – to heighten industry awareness and provide information, education and tools to help mitigate this risk.”

About AIAG
Established in 1982, AIAG is a not-for-profit association where professionals from a diverse group of stakeholders - including retailers, suppliers of all sizes, automakers, manufacturers, service providers, academia and government - work collaboratively to streamline industry processes via global standards development and harmonized business practices. To learn more about AIAG, visit www.aiag.org.

Contact: Greg Creason
Marketing Manager - AIAG
gcreason@aiag.org

Primary Logo


© GlobeNewswire 2018
share with twitter share with LinkedIn share with facebook
share via e-mail
0
Latest news "Companies"
12:20aHBM Healthcare Investments Media Release
TE
12:19aENSCO ROWAN : EnscoRowan Announces Cash Tender Offers and Consent Solicitations
BU
12:16aNEWS HIGHLIGHTS : Top Energy News of the Day
DJ
12:15aOil prices jump as U.S. crude stocks fall, Middle East worries add support
RE
12:14aFACEBOOK : to hand over hate speech suspects' data to French gov't
AQ
12:12aMITSUBISHI HEAVY INDUSTRIES : Bombardier exits commercial aviation with sale of regional jet business to Mitsubishi
RE
12:12aAFCON : S'Eagles Target Round Of 16 Ticket
AQ
12:11aFIAT CHRYSLER AUTOMOBILES : Large carmakers including VW, FCA could face 2021 EU emissions fines - study
RE
12:10aEXPEDIA : Partner Solutions collaboration to ‘unlock' Middle Eastern hotel market
AQ
12:10aMARRIOTT INTERNATIONAL : JW Marriott Marquis Dubai appoints hotel manager
AQ
Latest news "Companies"
Advertisement