As a leading expert in automotive cybersecurity with extensive global experience, what initially motivated you to pursue a career in this field?
I have always been interested in cybersecurity since I was a child and learned about programming and hacking. As I continued to study computer security, software security and network security, I then had the opportunity to venture into the world of automotive cybersecurity. I started almost 20 years ago, and at that time it was a fairly new and unexplored area for cybersecurity, which was one of the main reasons I became interested in learning more.
With your rich background, including your studies in Sweden and significant contributions to the industry, what led you to start at IAV in Japan, and what were your expectations for this role?
I’ve been involved in numerous global engagements and supported various automotive organizations on their cybersecurity maturity journey. At IAV, as Global Technical & Cybersecurity Advisor, I aim to continue contributing to raising the bar of cybersecurity in the automotive industry by working with companies and organizations globally.
Given your international experience, including your work in Europe and Japan, how have cultural differences influenced your approach to automotive cybersecurity, and how have you managed these differences?
I strive to continually learn and grow. Working with customers in different regions and different cultures has allowed me to learn to adapt and adjust to various situations. As I continue working in different regions, I will strive to better understand the specific cultural aspects and how to best serve our customers and meet their expectations.
As someone who has published extensively and authored two books on automotive security, what do you see as the most pressing challenges currently facing the automotive cybersecurity industry?
There are two main themes I would like to highlight: regulations & standards, and technologies. First, there are several relevant cybersecurity regulations & standards that automotive organizations need to consider, but how to optimize and best fulfill some of those requirements is still a challenge. Second, there are new technologies being adopted in the automotive industry, e.g., autonomous driving and AI solutions, which introduce new cybersecurity threats and risks. As such, appropriate cybersecurity controls to address these new risks are required.
With your deep involvement in standardization activities and global solutions' development, what trends or developments do you anticipate in automotive security in the coming years?
We see more advanced use cases being developed and deployed in the automotive ecosystem that require more complex software solutions and new technologies. It is important to note that automotive cybersecurity is going beyond protecting a single component or single vehicle to protect the entire ecosystem, that is, ensuring end-to-end security from vehicles to cloud to mobile devices to infrastructure. This also includes not only incorporating appropriate product security solutions in the automotive ecosystem, but also employing secure development practices, as well as providing adequate means for continuous cybersecurity activities such as cybersecurity monitoring, incident response and secure over-the-air updates.
Contact:
dennis.kengo.oka@iav.jp
https://www.linkedin.com/in/denniskengooka/