Prevention is the first line of defense in automotive cybersecurity. It involves implementing measures to protect vehicles from potential cyber threats before they can cause harm in the field. Our key strategies include:

• Security by design: integrating security features into the vehicle's design from the outset, ensuring that every component and system is built with security in mind. Development cycle complaint to internal standards such as ISO/SAE 21434 which includes continuous vulnerability scanning.
• Access control: restricting access to critical systems and data to authorized persons only, using techniques such as encryption, multi-factor authentication, real-time prevention techniques.
• Proper testing: using state-of-the-art cybersecurity testing methodologies as part of our Validation and Verification measures to identify weaknesses to the earliest time possible.

Despite the best preventive measures, threats and attack vectors might appear over time which require defense measures in the field. Detection involves monitoring systems to identify these threats asquickly as possible. Key components include:

• Continuous Monitoring: Continuously watching vehicle systems and networks to detect threats in real-time.
• Intrusion Detection System (IDS): Functionality on the vehicles to monitor in vehicle networks on suspicious activity and alert vehicle manufacturers or fleet operators..
• Anomaly Detection: Using artificial intelligence (AI) to identify unusual patterns of behavior that may indicate a cyber-attack.

When a threat is detected, a swift and effective response is crucial to mitigate its impact. In this pillar we focus on:

• Incident response playbooks: predefined procedures for responding to different types of cyber incidents, ensuring a coordinated and efficient reaction.
• Forensic analysis: investigating the cause and extent of a breach to understand how it occurred and prevent future incidents.
• Ad-hoc OTA updates: keeping software and firmware up to date to protect against known vulnerabilities and emerging threats.

Underlying these three pillars is our Cybersecurity Management System (CSMS), which provides our framework for managing product cybersecurity across the entire life cycle of our products and services. Our effective governance involves:

• Policy development: establishing clear policies and standards for product cybersecurity along the whole product life cycle.
• Threat analysis & risk assessment (TARA): identifying, assessing and prioritizing risks to ensure that resources are allocated effectively to address the most significant threats.
• Compliance: ensuring that all product cybersecurity measures comply with relevant laws, regulations, and industry standards, especially the automotive cybersecurity leading standard ISO/SAE 21434 that we are certified for.