Video explaining the Cybersecurity Plan according to ISO/SAE 21434

[WP-06-01] Cybersecurity Plan is one of the most important documents of ISO/SAE 21434. Learn here what it must contain.

ISO/SAE 21434 requires the creation of a so-called Cybersecurity Plan as a central document for tracking all cybersecurity activities and their progress during the development phase and beyond. This document must be correctly structured in order to properly map all requirements as defined by the standard. This short 13-minute video course will familiarise you with the Cybersecurity Plan document in line with ISO/SAE 21434 and provide you with an initial understanding of how to set it up.

NEW: Find a formulated template for the Cybersecurity Plan (incl. checklist and instructions for creation) in the new ISO/SAE 21434:2021 Workbook (Published end of 2023)

Watch video course
cyber-security-plan
cyber-security-plan-video-course

Learn how to develop a cybersecurity plan as required by ISO/SAE 21434

Cybersecurity planning is crucial to achieve cybersecure products and, as already mentioned, to comply with ISO/SAE 21434. Undoubtedly, the cybersecurity plan is an essential document during cybersecurity planning and can’t be neglected as it defines important aspects necessary for projects and all involved stakeholders. Especially, when cybersecurity activities can be distributed and clients as well as suppliers need to define a plan for their respective activities.

Therefore, in this “Cybersecurity Plan” video course, we will explain what a cybersecurity plan is and how to correctly create it and develop it.

First, we will introduce the concept of cybersecurity planning, cybersecurity relevance for items and components. What’s more, you will get a clear overview of the cybersecurity plan requirements according to ISO/SAE 21434.

Secondly, we will explain how to develop a cybersecurity plan step by step during the concept and development phases as well as when it should be updated. Once there is a common understanding on how to create a cybersecurity plan, we will provide a sample cybersecurity plan to give you a reliable point of reference based on best practices and explain each content section.

At last, we will also present the costly consequences of neglecting a cybersecurity plan to reinforce the importance and impact it has across organizations’ projects and roles.

Get started with creating the document: A detailed guide to the Cybersecurity Plan (incl. background information and a checklist) can be found in the new ISO/SAE 21434:2021 Workbook

At the end of 2023, we have published the ISO/SAE 21434:2021 Workbook. This new publication is designed to simplify practical work with the most important automotive cybersecurity standard, the ISO/SAE 21434. The workbook includes:

  • all WPs (and corresponding RQs,RCs and PMs) of ISO/SAE 21434:2021 (“First Edition”) – officially licensed by ISO.
  • Field-tested templates (in a formulated explanatory way) for six key work products: Cybersecurity Plan, Cybersecurity Case, Cybersecurity Interface Agreement, Item Definition, Cybersecurity Concept, and Threat Analysis and Risk Assessment.
  • A cybersecurity controls catalogue, expert interviews, background information, explanations with a practical perspective across the automotive value chain.

Please find the full table of contents and more information over here.

Order now

Who the Cybersecurity Plan video course is made for

For project managers

Not having a cybersecurity plan might lead to unclear responsibilities, not being able to establish a schedule baseline, and ultimately projects getting off track. By watching this video course you will learn to develop a cybersecurity plan and avoid costly consequences.

For quality managers

To avoid lack of evidence of cybersecurity due diligence, a cybersecurity plan must be in place. Moreover, knowing how to develop a cybersecurity plan enables you to correctly deliver this ISO/SAE 21434 work product.

Cybersecurity plan video course content

I. Intro to cybersecurity plan in automotive

As an introduction to the concept of cybersecurity plan, we will first explain what it is, introduce what the learning objectives of this video course and the relevance to your role.

II. Cybersecurity planning

Before going deeper into the cybersecurity plan, we will first explain the concept of cybersecurity planning, what makes an item or component cybersecurity relevant and how it is related in the design and development process and cybersecurity lifecycle of the item or component.

III. The cybersecurity plan

Here, you will learn what are the characteristics of the cybersecurity plan, why it is critical for distributed development, and recognize its importance for projects.

IV. Required cybersecurity plan contents according to ISO/SAE 21434

In this section, we will explain each of the six aspects that must be included in the cybersecurity plan according to ISO/SAE 21434 and provide examples.

V. Development of a cybersecurity plan

In a visual illustration of a cybersecurity plan, get guidance on how to develop a cybersecurity plan, where to reference it; as well as when it should be updated.

VI. Cybersecurity plan sample document structure

Get a more accurate idea on how a cybersecurity plan might look like in this section. We will provide a sample document based on automotive cybersecurity best practices and state of the art.

VII. Consequences of neglecting cybersecurity plan

Recognize the negative impact of neglecting a cybersecurity plan. This section will reinforce the importance of having a cybersecurity plan and why it is essential for clear responsibility and communication among external and internal project stakeholders.

VIII. Cybersecurity plan video course summary

Finally, we will recapitulate on the main lessons learned during the cybersecurity plan video course, the benefits of having a cybersecurity plan, and why it should be addressed as early as possible.

More video courses related to Cybersecurity Plan

X