driving worldwide business excellence

SAE J3061 and ISO 21434:2020 Cybersecurity Threat Analysis and Risk Assessment (TARA)

Home > ISO Training > SAE J3061 and ISO 21434:2020 Cybersecurity Threat Analysis and Risk Assessment (TARA)

Seminar Content

This three-day course is designed to provide the knowledge and skills required to perform threat analysis and risk assessments (TARA) per the SAE J3016 and ISO/SAE 21434 Cybersecurity Engineering Standard. This course will give you the information to Plan, Conduct and Report all TARA activities for a vehicle system or sub-system.

This course combines presentations, along with in-class group breakout exercises to put what you are learning into practice.

Who Should Attend

Those involved in the design, development, and production of electrical and electronic based vehicle products, including the systems, software and hardware engineers, and managers. Basically, all those responsible for the development and implementation of hardware and software systems in vehicles.

Participants should be, or plan to be, actively managing, or involved in, or aware of electrical and/or electronic items, systems, or elements that are incorporated in vehicles. And have the abilities, education, and experience required for the above roles.

Recommended Training and/or Experience

Participants should be involved in or aware of software and hardware development as it relates to the vehicle industry. A basic understanding of the ISO/SAE 21434 standard is recommended.

Seminar Materials

Each participant will receive a seminar manual including case studies.

Seminar Goals

After successful completion of this course, participants will be able to:

  • Determine the relationship between SAE J3016/ ISO/SAE 21434 and TARA
  • Plan and perform activities of cybersecurity risk management
  • Determine the applicability of risk assessment methods of ISO/SAE 21434 and SAE J3016
  • Determine the impact rating of a damage scenario
  • Determine the attack feasibility rating for an attack path
  • Evaluate the risk associated with a damage scenario and attack path
  • Select the risk treatment commensurate to the risk.
  • Determine the applicability of other risk assessment methods
  • Plan of TARA activities

Daily Agenda (approximate, based on class discussions)

Day One

  • Chapter 1: Overview of ISO 21434 and SAE J3061
  • Overview of TARA
  • Relationship between ISO 21434 and TARA
  • Chapter 2: Overview of ISO 3100
  • Cybersecurity activities of ISO 3100
  • Risk assessment methods in ISO 21434 and SAE J3061
  • Threat analysis and damage scenarios
  • Impact rating

Day Two

  • Chapter 3: Attack surfaces
  • Attack paths
  • Attack feasibility rating
  • Risk Assessment methods: Attack potential
  • Risk value evaluation
  • CAL evaluation

Day Three

  • Chapter 4: Risk Mitigation & Treatment
  • Management cybersecurity controls
  • Technical cybersecurity controls
  • Other risk assessment methods
  • Plan to implement TARA

Note: The materials will include SAE J3061 content as applicable.

SAE J3061 and ISO 21434:2020 Cybersecurity Threat Analysis and Risk Assessment (TARA)

Search for Training

Course Keyword:


Start Date:

/ /

End Date:

/ /


Plantech-Omnex Partnership ppapandaudits