CSMS document frameworkeditoredrivesec2024-06-27T16:46:08+02:00

CSMS FRAMEWORK KIT

The CSMS Framework kit is a structured kit of documentation that supports OEMs and Tier 1s to achieve the certification for CSMS, accelerating the documental approach.

General Considerations about CSMS

The Cybersecurity Management System (CSMS) means “a systematic risk-based approach defining organizational processes, responsibilities and governance to treat risk associated with cyber threats to vehicles and protect them from cyber-attacks” (from UN Regulation 155).

Concretely, CSMS is a set of policies, processes and procedures demonstrating that a company covers all the most relevant cybersecurity implications across the organization and the product lifecycle.

The CSMS can be either:

1. Integrated inside an existing Company Management System (e.g., ISO 9001 certified Quality Management System, ISO 2700x certified Information Security Management System) or

2. Established as a separate Management System

If case 1 applies, existing evidence of compliance (i.e., certification) to these standard supports the compliance to R155 Regulation.

If case 2 applies, more details and evidence shall be provided to witness the compliance.

The common structure for a CSMS

Drivesec has supported a wide range of OEMs and Tier 1s in obtaining certification for the CSMS. Through this experience, Drivesec was able to define a common structure for an ISO/SAE 21434-compliant CSMS, characterised by 3 levels of granularity and 6 streams, as follows:

CSMS Framework+didascalia

Thanks to the support experience collected this year by our experts in guiding OEMs and Tier 1s until the achievement of the vehicle type approval, the CSMS Document Framework can also respond to requests made by approval authorities and their technical services.

Reusability and Tailoring of CSMS documentation

Drivesec has prepared also a kit of documents, partially pre-filled and customizable, to develop the CSMS, as follow.

List of Documents

Want to discover blurred parts of our CSMS framework kit for certification? Contact us

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.

Necessary

Always Enabled

Necessary cookies are absolutely essential for the website to function properly. These cookies ensure basic functionalities and security features of the website, anonymously.

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Others