Addressing Cyber Resilience Act using ISO/SAE 21434 & Automotive SPICE®

As the automotive industry faces increasingly complex cybersecurity challenges and stringent regulations, the alignment of development and compliance processes has become a pressing need. Operating globally requires compliance with different regulations, which can significantly increase both the size and duration of processes and projects. Leveraging the synergies among regulations and building smooth processes is key for efficient project management.

This presentation offers an overview of the current global regulatory landscape for automotive cybersecurity. It will outline how to harmonize ASPICE, ISO/SAE 21434, and Cyber Resilience Act (CRA) compliance efforts to reduce redundancy, improve audit readiness, and streamline cybersecurity management across the supply chain.

About the Speakers

Dikla Fiengertz

Dikla is a highly accomplished and results-oriented leader with a career-long record of architecting scalable compliance frameworks for global automotive organizations. As the Quality Management and Cybersecurity Team Leader at PlaxidityX (2020–2025), she was instrumental in delivering ISO 21434 (CSMS), ASPICE Level 2, and ISO 9001 certifications from the ground up. Her work focuses on bridging the gap between R&D agility and rigorous global mandates, particularly in navigating the operational impacts of international cybersecurity and privacy laws. Dikla’s motto is “I don’t just build processes to pass audits; I’m institutionalizing them to drive excellence”.

Janine Funke

Passionate about cybersecurity, Janine is a consultant, trainer and assessor dedicated to helping OEMs and suppliers navigate and achieve their security goals. Within her current role at UL Solutions, she leads the Strategic Area Cybersecurity supporting the international business development for cybersecurity services.

Her academic journey began with a study in international business, culminating in a double degree from China and Germany. Early in her career, she immersed herself in the dynamic field of cybersecurity, a passion that continues to grow. By actively participating in committees such as the German working group for ISO automotive cybersecurity standards, she contributes to shaping industry standards.

She is a speaker at international cybersecurity conferences, where she shares insights on emerging cybersecurity challenges and solutions. Furthermore, she is one of the founding members of CRAIG – the Cyber Resilience Act Implementation Group, a non-profit network dedicated to supporting companies in implementing the CRA and fostering a strong community around it.