BlackBerry Cyber Security for Connected Cars for GDPR

BlackBerry Limited  introduced new cybersecurity consulting services aimed at enabling enterprise GDPR compliance and mitigating security risks in connected automobiles that threaten personal and public safety.

General Data Protection Regulation (GDPR)

Set to go into effect May 2018, and applicable to any enterprise controlling or processing Personally Identifiable Information (PII) of European Union residents, GDPR demands major changes to the ways organisations may collect, use, and store PII about customers and employees. BlackBerry Cybersecurity Consulting will guide organisations through the process of understanding how to manage company data, how GDPR applies to the organisation, and how to achieve a competitive readiness posture.

“Having been engaged with the EU Justice Directorate-General since 2012, we understand the GDPR requirements and have developed expertise to help address the full range of GDPR implications for enterprises, from situational assessment to offering DPO (Data Protection Officer) -as-a-service,” said Carl Wiese, Global Head of Sales, BlackBerry. “In addition to consulting services, we provide many necessary software solutions, making BlackBerry a one-stop shop for GDPR compliance.”

Article 37 of the GDPR requires organisations to have a dedicated DPO to oversee the company’s data protection strategy. The IAPP estimates over 27,000 DPOs will be needed to address that requirement.

Automotive Cybersecurity Consulting Services

Cybersecurity is top of mind for automakers as new technology and more connectivity is introduced to modern cars. According to Automotive Cybersecurity and Connected Car Report from IHS Automotive, there are nearly 112 million vehicles now connected around the world and the global market for automotive cybersecurity is expected to grow to $759 million USD in 2023. BlackBerry will now offer new services directly and through a new partner program aimed at helping to eliminate security vulnerabilities within connected and autonomous vehicles.

“When it comes to connected cars, there is no safety without security,” continued Weise. “BlackBerry’s cybersecurity consulting practice builds on decades of experience in information security, data protection and cyber-resilience to support our clients in protecting their most valuable assets. As hacking evolves and new threats arise, our new cybersecurity consulting services will help play a critical role in the development of secure connected and autonomous vehicles.”

The automotive ecosystem will be able to benefit from services such as security audits for existing cars, software code reviews, operating system hardening, and post build assurance assessments. Services include:

  • Guidance on incorporating security within the building process to ensure deployed technology meets the required security.
  • Validation of third-party solutions that do not contain any known vulnerabilities prior to deployment.
  • Advice on managing security lifecycle for the vehicle and developing a patch strategy for car dealer distribution networks as well as for “over-the-air” options.
  • Full technical security audit of existing and pre-market vehicles, as well as its backend network and corresponding infrastructure.
  • In-depth security development training of developers.
  • Security awareness training for automotive employees to ensure risks to company assets, brands and products are minimized.

Spring Cloud, a supplier of autonomous driving AI platforms in South Korea, will be the first partner to work with BlackBerry to provide the new cybersecurity consulting services to a range of automotive technology providers.

BlackBerry has provided cybersecurity solutions to clients in government and banking since the mid-90s. With the acquisition of QNX in 2010, the company’s expertise expanded into safety-critical systems in automotive, healthcare, energy and manufacturing. Today, BlackBerry Cybersecurity Consulting provides a holistic cybersecurity approach to help all enterprises manage complex security structures and mission-critical systems around the world.