Dávid Sámoczi

About

Professional Background

With a strong technical foundation in automotive engineering, design, and manufacturing processes, I bring extensive experience with laboratory test equipment and vehicle penetration testing to my work. As a CISSP-certified professional, I specialize in compliance activities, risk management, threat analysis (TARA), and identifying overlaps between IT and automotive management systems.

Approach to Work

I take a proactive approach to cybersecurity by staying updated with the latest technologies and trends. My commitment to continuous learning enables me to develop innovative solutions that provide lasting value. I deliver high-quality results through effective collaboration with cross-functional teams.

Personal Interests

In my free time, I enjoy open-source intelligence (OSINT) for its ability to uncover hidden insights and motorbike camping as it combines my love for exploration with big American V-Twin engines. These diverse interests help me bring fresh perspectives to my work.

Certifications

Resume

Education

Master's degree in Electrical Engineering

2011 - 2013

Széchenyi István University, Győr, HU

Automatization specialization

Bachelor's degree in Electrical Engineering

2006 - 2010

University of Pécs, Pécs, HU

Embedded microcomputer systems specialization

Contract Work Experience

2021 - Present

Training related activities

Instructor of SCADEMY's C and C++ Secure Coding courses
Automotive cybersecurity specific training material development

Automotive cybersecurity consultancy

ISO/SAE 21434 CSMS, R155 and R156 gap analysis
Perform Threat Analysis and Risk Assessment (TARA)
Work product definition for ISO/SAE 21434
Establishing secure manfacturing/OT environment
Requirement reviews

Project documentation reviews

Smart homes
Residential alarm systems
Residential HVAC control systems

Professional Experience

Staff Cybersecurity Engineer

2024 - Present

Knorr-Bremse, Budapest, HU

Leading the cybersecurity validation activities in truck products portfolio
Defining cybersecurity validation automatization processes and tools
Researching and defining penetration testing methods
Improving Cybersecurity Management System (CSMS) processes
Managing cybersecurity subcontractors

#pentest #validation #research #process #CSMS #automotive #cybersecurity #management

Senior Cybersecurity Consultant

2022 - 2024

itemis AG, Stuttgart, DE

Helped clients in automotive via cybersecurity consulting and training
Established and managed TARA Services team
Executed Threat Analysis and Risk Assessments (TARA) for OEM, T1, T2
Performed CSMS gap analysis and improved processes for clients
Shaped the future of itemis SECURE (formerly Yakindu) TARA tool

#training #consulting #sales #engineering #management #automotive #cybersecurity #ISO27001 #ISO/SAE21434 #R155 #R156 #TARA

Senior Cybersecurity Engineer

2019 - 2022

Knorr-Bremse, Budapest, HU

Defined and integrated cybersecurity policies and processes for CSMS
Executed cybersecurity validation activities incl. ECU penetration testing
Established secure software design, coding guideline and processes
Defined hardware hardening guidelines
Improved the cybersecurity of manufacturing (OT) environment

#automotive #cybersecurity #R155 #R156 #ISO/SAE21434 #ISO24089 #MISRA #CERT-C #TARA #pentest #python #OT

Senior Software Coordinator

2016 - 2019

Knorr-Bremse, Budapest, HU

Managed product releases and lead Change Control Board activities
Designed and developed embedded software architecture
Improved and automated release processes

#integration #configuration management #change management #ASPICE #CI #ISO26262 #AUTOSAR #PTC

Embedded Software Engineer

2013 - 2016

Valeo, Veszprém, HU

Engineered software across the V-model for Bootloader, CAN, Diagnostics
Lectured the subject: “Real time systems” in University of Pannonia

#automotive #embedded #ISO14229 #MISRA #V-model #ASPICE

Test Engineer

2010 - 2013

Flex, Tab, HU

Developed hardware and software for manufacturing test equipment
Improved yield of manufacturing lines

#C #LabView #manufacturing #LEAN #SixSigma

Services

I am excited to offer a diverse range of services aimed at addressing the unique challenges of the automotive and cybersecurity industries. My expertise spans from in-depth training programs to meticulous process and product engineering, ensuring your projects are not only successful but also secure and compliant.

Browse through the various service areas below and let's work together to bring your visions to life.

Automotive

Trainings

MISRA
Design and code best practces

Process development

Development process review
ASPICE gap analysis

Product Engineering

Requirement review
Embedded software development in C, C++
Architecture definition (Product, Hardware, Software)

Automotive Cybersecurity

Trainings

Tailored trainings for any automotive cybersecurity related topic.

Executive training for UNECE R155, R156, ISO/SAE 21434
Automotive cybersecurity related awareness trainign
Threat Modeling / TARA training
Best practices for secure hadware development

Cybersecurity Compliance

Cybersecurity Management System (CSMS) related consulting.

ISO/SAE 21434 CSMS gap analysis
ISO/SAE 21434 CSMS work product templates
ASPICE for Cyberseucirty gap analysis

Cybersecurity Engineering

Product engineering related cybersecurity specific tasks for the whole V-model.

Goals, Claims definition and review
Architecture establishment
Secure desing coding
Requirement defintion and review
Implemetation
Testing verification and validation

IT/OT Cybersecurity

Compliance

ISO 27001