Who | Motional |
---|---|
Logo | ![]() |
Where | Boston MA |
When | 4/2020 – present |
What | Senior Principal Engineer, Cybersecurity Development Lifecycle Practice Lead |
Overview:
Motional (formerly Hyundai-Aptiv Autonomous Driving Joint Venture) develops world-class production-ready autonomous driving systems (SAE Level 4).
Achievements:
Lifecycle Practice:
- Served as Autonomous Vehicle Cybersecurity Development Lifecycle Practice Lead
- Created a cybersecurity development lifecycle capable of satisfying ISO/SAE 21434 and UNECE WP.29 R155, and overlaying ISO 12207 / 15288 [https://github.com/nutonomy/AVCDL]
- Served as editor and advisor to cybersecurity SMEs providing AVCDL secondary process documents
- Worked with certification body to validate efficacy of AVCDL for tailoring toward certification
- Developed a visual design language for use in cybersecurity process documentation
- Created a vendor Cybersecurity Interface Agreement (CIA) framework and associated guidance document
- Adapted the MDS2 for use in the AV space
- Participated in cybersecurity requirements development based on my cybersecurity taxonomy-based gap analysis
- Designed a taxonomy for cybersecurity requirements allowing for effective gap analysis
- Performed gap analysis of cybersecurity requirements
Leadership / Cross-team:
- Participated in the efforts toward submission of multiple cybersecurity-related patent applications
- Created and gave a presentation on the application of threat modeling tools to the issue of privacy
- Mentored junior team members
- Work with cybersecurity management and project management to develop group schedule
- Worked with safety, systems, project management and development toward adoption of the AVPDL
- Created and gave multiple presentations to educate other teams and management on various aspects of cybersecurity
- Worked with safety group to ensure a coordinated development process
Industry Participation:
- Created and presented a course on cybersecurity metrics for a joint Auto-ISAC / NHTSA training project
- Co-chaired SAE TEVEES183A3 (maturity model for ISO/SAE 21434)
- Worked on the team which provided official SAE feedback to NHTSA’s cybersecurity guidance
- Created summaries of cybersecurity-related ISO standards under development
- Twice served on joint MDIC / FDA / MITRE threat modeling bootcamp training staff
- Member of the ISO/SAE 21434 committee (USTAG)
- Member of the ISO C and C++ committees
- Member of OASIS SARIF working group
Papers:
- Security Requirements Taxonomy
- Autonomous Vehicle Cybersecurity Development Lifecycle (AVCDL)
- Autonomous Vehicle Product Development Lifecycle (AVPDL)
You must be logged in to post a comment.