Hi, I'm Dávid Sámoczi

Cybersecurity
Enthusiast

With over a decade of experience in the automotive industry paired with passion for cybersecurity.

Github Linkedin Blog Email Calendly

About me

Professional background

With a strong technical foundation in automotive product engineering, product design, and manufacturing processes, I bring extensive experience with development processes and with laboratory test equipment to my work. As a CISSP-certified professional, I specialize in cybersecurity compliance activities, risk management, threat analysis, threat modeling, and identifying overlaps between different management systems.

Proactive approach

I take a proactive approach to cybersecurity by staying updated with the latest technologies and trends. My commitment to continuous learning enables me to develop innovative solutions that provide lasting value. I deliver high-quality results through effective collaboration with cross-functional teams.

Personal interests

In my free time, I enjoy open-source intelligence (OSINT) for its ability to uncover hidden insights and motorbike camping as it combines my love for exploration with big American V-Twin engines. These diverse interests help me bring fresh perspectives to my work.

Certifications

TÜV Certification

Freelance services

I offer specialized consulting and engineering services in the automotive and medical industries. My expertise covers process compliance (including ASPICE, ISO/SAE 21434, IEC 62304, and more), product engineering for embedded systems, cybersecurity management, and professional training. Whether you need gap analysis, architecture definition, secure software and hardware development, or targeted trainings, I provide tailored solutions to help your organization meet industry standards and achieve technical excellence.

Compliance
  • Process review and gap analysis for development processes
  • ASPICE PAM 3.x/4.x gap analysis
Product Engineering
  • Requirement review
  • Embedded software development in C, C++
  • Architecture definition (Product, Hardware, Software)
Trainings
  • MISRA C
  • Best practices for design and code
Compliance
  • ISO/SAE 21434 Cybersecurity Management System (CSMS) general consulting
  • ISO/SAE 21434 CSMS gap analysis
  • ISO/SAE 21434 CSMS work product templates
  • ASPICE for Cybersecurity gap analysis
Product Engineering
  • Cybersecurity Concept, Goals, Claims definition and review
  • Architecture definition
  • Secure design and coding
  • Requirement definition and review
  • Testing, verification and validation
Trainings
  • Executive training for UNECE R155, R156, ISO/SAE 21434, ISO/SAE TR 8477, IO/SAE PAS 8475
  • Automotive cybersecurity awareness training
  • Threat Modeling / TARA training
  • Best practices for secure software development
  • Best practices for secure hardware development
Compliance
  • IEC 62304
  • IEC 81001-5-1
  • IEC TR 60601-4-5

Resume

Education

Master's degree in Electrical Engineering

2011 - 2013

Széchenyi István University, Győr, HU

Automatization specialization

Bachelor's degree in Electrical Engineering

2006 - 2010

University of Pécs, Pécs, HU

Embedded microcomputer systems specialization

Freelance Work Experience

2021 - Present

Medical Cybersecurity Engineering

  • Product Owner @ B. Braun | Next-gen dialyzer machine
  • Cybersecurity architecture definition
  • Product development process improvement
  • Compliance

Automotive cybersecurity consultancy

  • ISO/SAE 21434 CSMS, R155 and R156 gap analysis
  • Perform Threat Analysis and Risk Assessment (TARA)
  • Work product definition for ISO/SAE 21434
  • Establishing secure manfacturing/OT environment
  • Requirement reviews

Training activities

Project documentation reviews

  • Smart homes
  • Residential alarm systems
  • Residential HVAC control systems

Professional Experience

Staff Cybersecurity Engineer

2024 - Present

Knorr-Bremse, Budapest, HU

  • Leading the cybersecurity validation activities in truck products portfolio
  • Defining cybersecurity validation automatization processes and tools
  • Researching and defining penetration testing methods
  • Improving Cybersecurity Management System (CSMS) processes
  • Managing cybersecurity subcontractors

#pentest #validation #research #process #CSMS #automotive #cybersecurity #management

Senior Cybersecurity Consultant

2022 - 2024

itemis AG, Stuttgart, DE

  • Helped clients in automotive via cybersecurity consulting and training
  • Established and managed TARA Services team
  • Executed Threat Analysis and Risk Assessments (TARA) for OEM, T1, T2
  • Performed CSMS gap analysis and improved processes for clients
  • Shaped the future of itemis SECURE (formerly Yakindu) TARA tool

#training #consulting #sales #engineering #management #automotive #cybersecurity #ISO27001 #ISO/SAE21434 #R155 #R156 #TARA

Senior Cybersecurity Engineer

2019 - 2022

Knorr-Bremse, Budapest, HU

  • Defined and integrated cybersecurity policies and processes for CSMS
  • Executed cybersecurity validation activities incl. ECU penetration testing
  • Established secure software design, coding guideline and processes
  • Defined hardware hardening guidelines
  • Improved the cybersecurity of manufacturing (OT) environment

#automotive #cybersecurity #R155 #R156 #ISO/SAE21434 #ISO24089 #MISRA #CERT-C #TARA #pentest #python #OT

Senior Software Coordinator

2016 - 2019

Knorr-Bremse, Budapest, HU

  • Managed product releases and lead Change Control Board activities
  • Designed and developed embedded software architecture
  • Improved and automated release processes

#integration #configuration management #change management #ASPICE #CI #ISO26262 #AUTOSAR #PTC

Embedded Software Engineer

2013 - 2016

Valeo, Veszprém, HU

  • Engineered software across the V-model for Bootloader, CAN, Diagnostics
  • Lectured the subject: “Real time systems” in University of Pannonia

#automotive #embedded #ISO14229 #MISRA #V-model #ASPICE

Test Engineer

2010 - 2013

Flex, Tab, HU

  • Developed hardware and software for manufacturing test equipment
  • Improved yield of manufacturing lines

#C #LabView #manufacturing #LEAN #SixSigma

Book a meeting
— or, if you prefer, write me a message —