Cybersecurity Engineer

Cybersecurity Engineer

Engineering aspects of cybersecurity

This Unit is about the analysis and design techniques used for cybersecurity during the development. It addresses topics such as
- System Threat Analysis and Cybersecurity Goals
- System Design and Vulnerability Analysis
- Software Design and Vulnerability Analysis
- Software Detailed Design and Cybersecurity
- Hardware and Firmare Design

Software Detailed Design and Cybersecurity:

This element considers at the software detailed design level related cybersecurity methods.
- The trainee knows cybersecurity related detailed SW design principles
- The trainee knows cybersecurity critical code inspections and reviews
- The trainee is able to select development tools and SW development environments, e.g. secure session key generation by random generator, encryption of signals, secure key store etc.

CYBERENGI.U3.E4.PC1
The trainee knows the common weakness enumeration of the community-developed list of software weakness types.
CYBERENGI.U3.E4.PC2
The trainee knows guidelines, knowledge bases, recommended tools, and methods supporting cybersecure design approaches.
CYBERENGI.U3.E4.PC3
The trainee knows how to perform a cybersecure related code review and the review checklist (applying available knowledge data sources).
CYBERENGI.U3.E4.PC4
The trainee knows and applies the MISRA extension rules for cybersecurity relevant code development.
CYBERENGI.U3.E4.PC5
The trainee knows the principles of preventive and defensive programming.