Automotive Cybersecurity Implementation, Autosar, Functional safety Implementation Embedded Software
GKN Driveline International GmbH
Schlagwörter
Informationssicherheit
Iso 26262
Testen
Automotive Open System Architecture
ISO/IEC 15504
Unit Testing
Matlab
Software Architecture
Softwareentwicklung
Targetlink
Skills
- Experience working as Cybersecurity Trainer (ISO 21434, UNECE R155, R156) for German OEMs and Tier1s on the topics:
- Introduction to Automotive Cybersecurity
- Secure Software Development and Verification
- Penetration Testing
- Experience training German OEMs and Global German Tier 1s on the following Functional Safety (ISO 26262) topics for more than 3 years:
- Introduction to Product Safety and Functional Safety
- Functional Safety for System Engineering and Design
- Functional Safety for Software Architectural Design and Testing
- Functional Safety for Software Unit Design, Construction, and Testing
- Member of ISO cybersecurity working group (ISO/TC 22/SC 32/WG 11)
- Experience in cybersecurity development lifecycle (Engineering) including:
- Cybersecurity concept definition including cybersecurity goals.
- Cybersecurity requirements definition, architectural design, and development at different abstraction levels
- Cybersecurity verification and validation activities including definition of test specification, test cases, etc.
- Experience in organizational cybersecurity management including:
- Preparing and successfully certifying organizations on ISO 27001, ISO 9001
- Preparing and successfully obtaining the TISAX Level 2 label (Info High)
- Improving cybersecurity awareness through training and workshops
- Experience in the cybersecurity process definition including:
- Extending the ASPICE process landscape to include cybersecurity-related processes.
- Creation of templates and guidelines for the cybersecurity work products
- Planning the execution of cybersecurity activities as a part of scrum-based ASPICE compliant V-Model
- Experience in project-dependent cybersecurity management including:
- Preparation of Cybersecurity Interface Agreement (CIA), Cybersecurity plan, Cybersecurity case, etc.
- Preparation of template and support for the cybersecurity assessment plan, report
- Experience in performing Threat Analysis and Risk Assessment (TARA) including:
- Analyzing item definition
- Identification of assets
- Analyzing attack paths
- Determination of risk value
- Selection of cybersecurity control mechanisms
- TARA performed on the tools: Excel, Medini Analyzer
- Hands-on experience planning and executing end-to-end projects on the system and software level in compliance with ISO 26262 up to ASIL D.
- Experience working with 3 German OEMs in various Functional Safety (FuSa) development, assessment, and qualification projects.
- Played the role of Functional Safety Expert with premium German and UK OEMs and guided them in the field of Functional Safety.
- Experience in successfully defending FuSa audits and conducting assessments with Tüv Nord.
- Experience in the creation, guiding, and verification review of FuSa artifacts such as FMEA, FTA, DFA, Safety Plan, Verification Plan, Verification Specifications, Verification Report, Safety case, Safety Manual Inputs, etc.
- Experience in the creation, verification review, and confirmation review of Software Tool Qualification report.
- Experience in tailoring the process for project management, quality, configuration management, and change management for FuSa projects.
- Designed an organizational standard process for managing and executing projects according to ASPICE v3.1, Scrum, and ISO 26262.
- Responsible for deploying and fostering the organization's standard process to ensure quality software development.
- Successfully executed and achieved ASPICE Level 3 certification in multiple external audits.
- Experience in scrum-based project management.
- Managed communication successfully with the customer, the OEM, and the suppliers while resolving the conflicts that occurred over the development process.
- Negotiation experience with suppliers and vendors.
- Featured in DW news on successfully hacking a well-known car brand in the field of Cybersecurity.
- Active contribution to the AUTOSAR Consortium as a safety and security group development partner.
- Hands-on experience working in a complete development lifecycle in compliance with ASPICE Level 3, Functional Safety (Up to ASIL D), and as per AUTOSAR standards including:
- System Requirement Analysis
- Software Requirement Analysis
- Software Architectural Design
- Software Detailed Design
- Software development (Model-Based Design / Manual Coding)
- Software Unit Test
- Software Integration Test
- Software Qualification Test
- Derivation of Software Requirements using System Requirements and stakeholder requirements: including
- Derivation of requirement in consideration of ASPICE base practices
- Derivation of Software Safety Requirements from Technical Safety Requirements
- Tools used Doors, PTC Integrity, Confluence, MS Word
- Design of Software Architecture using Software Requirements and System Architecture including:
- Design of software architecture in consideration of AUTOSAR standard including the interfaces
- Safety critical architecture design performing timing analysis, signal flow analysis, control flow, and data flow.
- Identification of safety mechanisms to fulfill the safety requirements.
- Tools used Doors, Enterprise Architect, Rhapsody, MS Word
- Preparation of Software Detailed Design using Software Architecture including:
- Derivation of detailed requirements for application software components, Complex Device Drivers (CDD), IO Hardware Abstraction (IoHwAb), etc.
- Design of detailed design in consideration of AUTOSAR standard including interfaces
- Design of safety-critical detailed design considering ISO 26262 recommendations
- Tools used Doors, PTC Integrity, MS Word
- Software development including:
- Development of application software components, Complex Device Drivers (CDD), IO Hardware Abstraction (IoHwAb), etc. using C programming.
- Model-Based development of application software
- Implementation of safety mechanisms, as per ISO 26262 recommendations
- Tools used Eclipse, Matlab/Simulink/Stateflow, TargetLink, Various IDEs
- Software Unit Testing including:
- Static code analysis as per MISRA rules
- Unit testing of C code in consideration of ISO 26262 Part 6
- Model-based testing of TargetLink models
- Tools used Tessy, PikeTec Tpt, TcEd
- Software Integration Testing including:
- Verification of Software Interfaces
- Testing in consideration of ISO 26262 Part 6
- Tools used Various debuggers, CANoe
- Software Qualification Testing including:
- Verification of Software Requirements
- Testing in consideration of ISO 26262 Part 6
- Tools used Various debuggers, CANoe, Xcp
- Tüv Süd Rheinland Automotive Cybersecurity Specialist ISO 21434
Languages
- Embedded C, Python, CAPL
- MATLAB Programming
Debuggers
- Renesas, Tasking Tricore, Windriver, GCC, Miniwiggler, IC5000, Minicube, Infineon
- MATLAB , Simulink , Stateflow, Design Verifier, Embedded Coder, Polyspace Code Prover, Dspace Control Desk, TargetLink , Ascet-SE, Ascet-MD, Autosar Builder, TcED, Enterprise Architect, Tessy, CANape , CANalyzer, CANoe , E-Sys, WinIDEA, Infineon MemTool, FPGA, Latex, Jenkins build server, MANTIS, Dimensions, Tpt, APIS FMEA, Medini Analyzer, Vector DaVinci Configurator and Developer, Reqtify
- AUTOSAR, ISO26262 , ISO 21434, ISO/PAS 21448, FMI
- Concept Development: MiL, SiL, HiL
- SVN, VSS, DOORS, PTC, Jira
- CAN, FlexRay, SPI
Projekthistorie
05/2021
-
03/2025
Directed the design and deployment of vehicle cybersecurity solutions for both OEMs and Tier 1 suppliers in India and Germany.- Delivered architecture diagrams and implementation roadmaps for vehicle threat monitoring systems.- Coordinated with cross-functional teams to ensure cybersecurity solutions aligned with regulatory requirements and industry standards.
Reisebereitschaft
Verfügbar in den Ländern
Deutschland
