Winners Consulting Services
繁中/EN/日本語
← All Services
🚗
AUTO

Automotive Cybersecurity (TISAX / ISO 21434)

TISAXISO 21434ISO 26262UN R155

積穗科研股份有限公司 · Winners Consulting Services Co. Ltd.

Taiwan's automotive semiconductor and ADAS innovators are ready to be your long-term technology partners — and TISAX certification is the foundation that makes that partnership possible. By designating Winners Consulting to deliver integrated TISAX, ISO 21434, and ISO 26262 implementation for your Taiwan suppliers, you build a certified, cybersecurity-capable supply base that meets your qualification requirements today and scales with your technology roadmap for years ahead. Only Winners combines Taiwan's automotive hardware innovation speed with the cybersecurity rigor your organization and your end customers demand.

Applicable Standards

TISAXTISAX Trusted Information Security Assessment Exchange
ISO 21434ISO/SAE 21434 Road Vehicle Cybersecurity
ISO 26262ISO 26262 Road Vehicle Functional Safety
UN R155UN Regulation No. 155 Cybersecurity

Intended Beneficiaries

  • OEMs and Tier 1 / Tier 2 automotive component suppliers
  • Automotive semiconductor, ECU, ADAS system, and V2X connectivity developers
  • Taiwanese companies targeting European (VW, BMW, Mercedes) or Japanese supply chains
  • Manufacturers already holding IATF 16949 certification looking to add cybersecurity and functional safety compliance

Service Delivery Process (Four Stages)

01

TISAX Scope Definition & Self-Assessment

Conduct a current-state inventory using the VDA ISA questionnaire (information security, prototype protection, data protection) and define scope and target level (AL 2 / AL 3).

02

Gap Analysis & Remediation Roadmap

Identify technical and process gaps against TISAX, ISO 21434, and ISO 26262, and develop a prioritized remediation roadmap.

03

Controls Implementation & Documentation

Establish TISAX-compliant information security controls and ISO 26262 functional safety plan (FSP), safety case, and all required documentation.

04

Audit Preparation & Certification

Support selection of an accredited audit body (ENX-recognized), conduct mock audits, address non-conformances, and provide full-engagement support through TISAX or ISO 26262 ASIL certification.

Frequently Asked Questions

What is the relationship between TISAX and ISO/SAE 21434?

TISAX is the European automotive industry's assessment mechanism for information security, based on the VDA ISA questionnaire. ISO/SAE 21434 is an international standard specifically for automotive cybersecurity engineering. They are complementary: TISAX focuses on supplier information security governance, while 21434 focuses on cybersecurity engineering throughout the product development lifecycle.

How is the ASIL level determined in ISO 26262?

ASIL is determined through Hazard Analysis and Risk Assessment (HARA), considering Severity (S), Exposure (E), and Controllability (C), ranging from ASIL A (lowest) to ASIL D (highest). Winners assists you in conducting HARA to correctly determine the ASIL level for each function.

Do Taiwanese suppliers entering European OEM supply chains definitely need TISAX?

Yes. Most European OEMs have made TISAX AL 2 or AL 3 assessment a mandatory supplier qualification requirement. Winners helps Taiwanese suppliers achieve recognition via the most efficient pathway.

How long is TISAX assessment validity?

TISAX assessment results are valid for 3 years. Re-assessment is required before expiry. Winners provides ongoing compliance maintenance services to ensure smooth re-assessment.

Enquire About This Service

Automotive Cybersecurity (TISAX / ISO 21434)

Request a Complimentary Consultation

All Advisory Services

🏛
ERM

Enterprise Risk Management (ERM)

🤖
AI

AI Governance & Compliance

📋
TS/IMS

Trade Secret & Innovation Mgmt (TS/IMS)

🔒
PIMS

Privacy Information Mgmt (PIMS)

🔗
BCM

Business Continuity Management (BCM)